CVE-2007-4575: OpenOffice.org-base allows Denial-of-Service and command injection

Severity: Critical

CVSS Score: 9.3

HSQLDB before 1.8.0.9, as used in OpenOffice.org (OOo) 2 before 2.3.1, allows user-assisted remote attackers to execute arbitrary Java code via crafted database documents, related to "exposing static java methods."