Signature Detail
Short Name |
HTTP:ORACLE:OS-2-METAFILE-BOF |
|---|---|
Severity |
High |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (2) |
Release Date |
2014/02/18 |
Update Number |
2346 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (2)
This signature detects attempts to exploit a known vulnerability in Oracle Outside In OS 2. The vulnerability is due to an error while processing OS/2 Metafiles. Oracle Outside-In is embedded in many enterprise applications. This vulnerability can be exploited by causing an application that uses the vulnerable libraries to handle a malformed file. Depending on the application, user interaction may be required. Successful exploitation can result in execution of arbitrary code or a denial of service condition in the context of the affected application.
Extended Description
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Maintenance.
Affected Products
- oracle fusion_middleware 8.4
- oracle fusion_middleware 8.4.1
References
- BugTraq: 64825
- CVE: CVE-2013-5879