First published: Wed Dec 05 2007(Updated: )
OpenOffice.org is an office productivity suite.<br>HSQLDB is the default database engine shipped with OpenOffice.org 2.<br>It was discovered that HSQLDB could allow the execution of arbitrary public<br>static Java methods. A carefully crafted odb file opened in OpenOffice.org<br>Base could execute arbitrary commands with the permissions of the user<br>running OpenOffice.org. (CVE-2007-4575)<br>All users of OpenOffice.org are advised to upgrade to these updated<br>packages, which contain a backported patch to resolve this issue.
Affected Software | Affected Version | How to fix |
---|
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.