Signature Detail

HTTP: Oracle Outside In JPEG 2000 QCD Segment Processing Heap Buffer Overflow 2

This signature detects attempts to exploit a known buffer overflow vulnerability in Oracle Outside-In, a set of libraries used to decode many file formats. It is due to handling the QCD segments in JPEG 2000 files. A successful attack can lead to arbitrary code execution in the context of the affected application.

Extended Description

Oracle Outside In Technology is prone to a remote code-execution vulnerability. The 'Outside In Filters' sub component is affected. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. This vulnerability affects the following supported versions: 8.3.5, 8.3.7

Affected Products

• AccessData Group FTK 3.2
• AccessData Group FTK 3.3
• AccessData Group FTK 3.4
• AccessData Group FTK 4.0
• ACD Systems Inc Canvas 14
• Guidance Software Encase Forensics 6.19.3
• Guidance Software Encase Forensics 7.04
• McAfee Security for Microsoft Exchange 7.6
• McAfee Security for Microsoft Sharepoint 2.5
• Microsoft Exchange Server 2007 SP3
• Microsoft Exchange Server 2007 SP 1
• Microsoft Exchange Server 2007 SP2
• Microsoft Exchange Server 2007 SP3
• Microsoft Exchange Server 2010 SP1
• Microsoft Exchange Server 2010 SP2
• Microsoft FAST Search Server 2010 for SharePoint
• Microsoft Office SharePoint Server 2010 SP1
• Oracle Oracle Outside In Technology 8.3.5
• Oracle Oracle Outside In Technology 8.3.7

References

• BugTraq: 54500
• CVE: CVE-2012-1769