First published: Thu Jan 17 2013(Updated: )
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) that can be triggered using a table header with a crafted "number of fields" value.
Credit: secalert_us@oracle.com
Affected Software | Affected Version | How to fix |
---|---|---|
Microsoft Exchange Server | =2007-sp3 | |
Microsoft Exchange Server | =2010-sp2 | |
Oracle Fusion Middleware | =8.3.7.0 | |
Oracle Fusion Middleware | =8.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.