説明
HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."
AI分析AIによる分析
影響を受ける製品
openofficeopenoffice
openofficeopenoffice
2.0.1
openofficeopenoffice
2.0.2
openofficeopenoffice
2.0.3
openofficeopenoffice
2.0.3_1
openofficeopenoffice
2.0.4
openofficeopenoffice
2.0beta
openofficeopenoffice
2.1
openofficeopenoffice
2.2
openofficeopenoffice
2.2.1
参照
- http://bugs.gentoo.org/show_bug.cgi?id=200771
- http://bugs.gentoo.org/show_bug.cgi?id=201799
- http://lists.opensuse.org/opensuse-security-announce/2007-12/msg00005.html
- http://secunia.com/advisories/27914Vendor Advisory
- http://secunia.com/advisories/27916Vendor Advisory
- http://secunia.com/advisories/27928PatchVendor Advisory
- http://secunia.com/advisories/27931Vendor Advisory
- http://secunia.com/advisories/27972Vendor Advisory
- http://secunia.com/advisories/28018Vendor Advisory
- http://secunia.com/advisories/28039Vendor Advisory
- http://secunia.com/advisories/28286Vendor Advisory
- http://secunia.com/advisories/28585Vendor Advisory
- http://secunia.com/advisories/30100Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-103141-1Vendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-66-200637-1
- http://www.debian.org/security/2007/dsa-1419
- http://www.gentoo.org/security/en/glsa/glsa-200712-25.xml
- http://www.mandriva.com/security/advisories?name=MDVSA-2008:095
- http://www.openoffice.org/security/cves/CVE-2007-4575.htmlPatchVendor Advisory
- http://www.redhat.com/archives/fedora-package-announce/2007-December/msg00134.html