Rapid7 Vulnerability & Exploit Database

CESA-2007:1090: RHSA-2007:1090

Back to Search

CESA-2007:1090: RHSA-2007:1090

Severity
9
CVSS
(AV:N/AC:M/Au:N/C:C/I:C/A:C)
Published
12/05/2007
Created
07/25/2018
Added
03/12/2010
Modified
08/29/2017

Description

Moderate: openoffice.org2 security updateOpenOffice.org is an office productivity suite.HSQLDB is the default database engine shipped with OpenOffice.org 2.It was discovered that HSQLDB could allow the execution of arbitrary publicstatic Java methods. A carefully crafted odb file opened in OpenOffice.orgBase could execute arbitrary commands with the permissions of the userrunning OpenOffice.org. (CVE-2007-4575)All users of OpenOffice.org are advised to upgrade to these updatedpackages, which contain a backported patch to resolve this issue.

Solution(s)

  • centos-upgrade-openoffice-org2-base
  • centos-upgrade-openoffice-org2-calc
  • centos-upgrade-openoffice-org2-core
  • centos-upgrade-openoffice-org2-draw
  • centos-upgrade-openoffice-org2-emailmerge
  • centos-upgrade-openoffice-org2-graphicfilter
  • centos-upgrade-openoffice-org2-impress
  • centos-upgrade-openoffice-org2-javafilter
  • centos-upgrade-openoffice-org2-langpack-af_za
  • centos-upgrade-openoffice-org2-langpack-ar
  • centos-upgrade-openoffice-org2-langpack-bg_bg
  • centos-upgrade-openoffice-org2-langpack-bn
  • centos-upgrade-openoffice-org2-langpack-ca_es
  • centos-upgrade-openoffice-org2-langpack-cs_cz
  • centos-upgrade-openoffice-org2-langpack-cy_gb
  • centos-upgrade-openoffice-org2-langpack-da_dk
  • centos-upgrade-openoffice-org2-langpack-de
  • centos-upgrade-openoffice-org2-langpack-el_gr
  • centos-upgrade-openoffice-org2-langpack-es
  • centos-upgrade-openoffice-org2-langpack-et_ee
  • centos-upgrade-openoffice-org2-langpack-eu_es
  • centos-upgrade-openoffice-org2-langpack-fi_fi
  • centos-upgrade-openoffice-org2-langpack-fr
  • centos-upgrade-openoffice-org2-langpack-ga_ie
  • centos-upgrade-openoffice-org2-langpack-gl_es
  • centos-upgrade-openoffice-org2-langpack-gu_in
  • centos-upgrade-openoffice-org2-langpack-he_il
  • centos-upgrade-openoffice-org2-langpack-hi_in
  • centos-upgrade-openoffice-org2-langpack-hr_hr
  • centos-upgrade-openoffice-org2-langpack-hu_hu
  • centos-upgrade-openoffice-org2-langpack-it
  • centos-upgrade-openoffice-org2-langpack-ja_jp
  • centos-upgrade-openoffice-org2-langpack-ko_kr
  • centos-upgrade-openoffice-org2-langpack-lt_lt
  • centos-upgrade-openoffice-org2-langpack-ms_my
  • centos-upgrade-openoffice-org2-langpack-nb_no
  • centos-upgrade-openoffice-org2-langpack-nl
  • centos-upgrade-openoffice-org2-langpack-nn_no
  • centos-upgrade-openoffice-org2-langpack-pa_in
  • centos-upgrade-openoffice-org2-langpack-pl_pl
  • centos-upgrade-openoffice-org2-langpack-pt_br
  • centos-upgrade-openoffice-org2-langpack-pt_pt
  • centos-upgrade-openoffice-org2-langpack-ru
  • centos-upgrade-openoffice-org2-langpack-sk_sk
  • centos-upgrade-openoffice-org2-langpack-sl_si
  • centos-upgrade-openoffice-org2-langpack-sr_cs
  • centos-upgrade-openoffice-org2-langpack-sv
  • centos-upgrade-openoffice-org2-langpack-ta_in
  • centos-upgrade-openoffice-org2-langpack-th_th
  • centos-upgrade-openoffice-org2-langpack-tr_tr
  • centos-upgrade-openoffice-org2-langpack-zh_cn
  • centos-upgrade-openoffice-org2-langpack-zh_tw
  • centos-upgrade-openoffice-org2-langpack-zu_za
  • centos-upgrade-openoffice-org2-math
  • centos-upgrade-openoffice-org2-pyuno
  • centos-upgrade-openoffice-org2-testtools
  • centos-upgrade-openoffice-org2-writer
  • centos-upgrade-openoffice-org2-xsltfilter

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;