CVE-2013-0418 in Exchangeinfo

Summary

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) that can be triggered using a table header with a crafted "number of fields" value.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

12/07/2012

Disclosure

01/16/2013

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
7642	Microsoft Exchange Outlook Web Access vspdx.dll) heap-based overflow	122	Not defined	Official fix	CVE-2013-0418
7358	Oracle Fusion Middleware Outside In Technology vspdx.dll) heap-based overflow	122	Not defined	Official fix	CVE-2013-0418

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!