CVE-2007-6329
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2007-6329
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Microsoft Office 2007 12.0.6015.5000 and MSO 12.0.6017.5000 do not sign the metadata of Office Open XML (OOXML) documents, which makes it easier for remote attackers to modify Dublin Core metadata fields, as demonstrated by the (1) LastModifiedBy and (2) creator fields in docProps/core.xml in the OOXML ZIP container.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Office不安全文档签名漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft Office是非常流行的办公软件套件。 Office允许作者使用认证的密钥数字签名文档,这样查看者就可以基于作者的公钥确认文档的完整性和来源。Office文档根据docProps/core.xml文件中的DublinCore元数据提供元数据信息,可通过Office键 -> 准备 -> 属性菜单显示或更改这些元数据信息的LastModifiedBy、creator等字段。攻击者可以未经验证签名便更改这些项,这样就可以欺骗签名文档的来源,诱骗用户信任文档。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2007-6329
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2007-6329
请登录查看更多情报信息。
Same Patch Batch · n/a · 2007-12-13 · 23 CVEs total
| CVE-2007-6324 | Fastpublish CMS Designconfig.PHP 远程文件包含漏洞 | |
| CVE-2007-5964 | Red Hat Enterprise Linux autofs 本地特权提升漏洞 | |
| CVE-2007-5000 | Apache 跨站脚本漏洞 | |
| CVE-2007-6333 | HPInfoDLL.dll ActiveX控件访问控制漏洞 | |
| CVE-2007-6332 | HPInfoDLL.dll ActiveX控件注册表访问控制漏洞 | |
| CVE-2007-6331 | HPInfoDLL.dll ActiveX控件绝对路径遍历漏洞 | |
| CVE-2007-6330 | Meridian Prolog Manager 加密强度漏洞 | |
| CVE-2007-6328 | DOSBox 授权与访问控制漏洞 | |
| CVE-2007-6327 | AVS Media AVSMJPEGFILE.DLL ActiveX Remote 缓冲区溢出拒绝服务漏洞 | |
| CVE-2007-6326 | Simple HTTPD Aux 远程拒绝服务漏洞 | |
| CVE-2007-6325 | Fastpublish Fastpublish Fastpublish CMS 代码注入漏洞 | |
| CVE-2007-6343 | HP OpenView Network Node Manager 未明跨站脚本攻击漏洞 | |
| CVE-2007-6323 | MMS Gallery PHP 多个目录遍历漏洞 | |
| CVE-2007-6322 | xml2owl 'filedownload.php' 目录遍历漏洞 | |
| CVE-2007-6342 | Apache::AuthCAS Cookie远程SQL注入漏洞 | |
| CVE-2007-6204 | HP OpenView CGI栈溢出漏洞 | |
| CVE-2007-6015 | Samba Send_MailSlot函数远程栈溢出漏洞 | |
| CVE-2007-5989 | Skype skype4com URI处理器远程堆溢出漏洞 | |
| CVE-2007-6347 | ViArt Shop/CMS/Helpdesk Products Block_site_map.PHP 远程文件包含漏洞 | |
| CVE-2007-6346 | Rainboard 跨站脚本攻击漏洞 |
Showing top 20 of 23 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2007-6329
No comments yet