Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
HTTP:ORACLE:COREL-DRAW-BO |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Oracle Outside In CorelDRAW File Parser Buffer Overflow |
Release Date |
2011/08/02 |
Update Number |
1966 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
HTTP: Oracle Outside In CorelDRAW File Parser Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Oracle Outside-In. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the affected application.
Extended Description
Oracle Outside In is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting victim to open a malicious '.cdr' file. Successful exploits will result in the execution of arbitrary code in the context of the application using the affected library. Failed exploit attempts may result in a denial-of-service condition. This issue affects Oracle Outside In versions 8.3.2.0 and 8.3.5.0.
Affected Products
- Accessdata forensic_toolkit 3.2
- Accessdata forensic_toolkit 8.3.2.0
- Accessdata ftk 3.2
- Acd_systems_inc acdsee_canvas 12
- Avantstar_inc. quick_view_plus 11
- Cisco security_agent 2.1.0
- Cisco security_agent 3
- Cisco security_agent 3.X
- Cisco security_agent 4.0.0
- Cisco security_agent 4.0.1
- Cisco security_agent 4.0.2
- Cisco security_agent 4.0.3
- Cisco security_agent 4.0.3.728
- Cisco security_agent 4.5.0
- Cisco security_agent 4.5.0
- Cisco security_agent 4.5.1
- Cisco security_agent 4.5.1.639
- Cisco security_agent 4.5.1.657
- Cisco security_agent 4.5.1.659
- Cisco security_agent 5.0
- Cisco security_agent 5.0.0.193
- Cisco security_agent 5.0.0.201
- Cisco security_agent 5.1
- Cisco security_agent 5.1.0.117
- Cisco security_agent 5.1.0 .79
- Cisco security_agent 5.2
- Cisco security_agent 5.2.0.285
- Cisco security_agent 5.2.0.296
- Cisco security_agent 6.0
- Cisco security_agent 6.0(1.126)
- Cisco security_agent 6.0.1.132
- Cisco security_agent 6.0(2.099)
- Cisco security_agent 6.0.2.145
- Guidance_software encase
- Guidance_software encase_enterprise 4.0.0
- Guidance_software encase_enterprise 4.16.0
- Guidance_software encase_forensic 5.0
- Guidance_software encase_forensic 6.12
- Guidance_software encase_forensic 6.14
- Guidance_software encase_forensic_v4 4.18.0 A
- Hp trim
- Ibm classification_module 8.6
- Ibm commonstore_for_exchange 8.4
- Ibm commonstore_for_lotus_domino 8.4
- Ibm content_analytics 2.1
- Ibm content_analytics 2.2
- Ibm content_collector_for_email 2.1.1
- Ibm content_collector_for_email 2.2
- Ibm content_collector_for_file_systems 2.1.1
- Ibm content_collector_for_file_systems 2.2
- Ibm content_collector_for_microsoft_sharepoint 2.1.1
- Ibm content_collector_for_microsoft_sharepoint 2.2
- Ibm content_integrator 8.5.1
- Ibm content_integrator 8.6
- Ibm content_manager_enterprise_edition 8.4.3
- Ibm db2 9.7
- Ibm db2 9.7 fixpack 2
- Ibm db2 9.7 fixpack 3
- Ibm document_manager 2.2
- Ibm document_manager 8.4.2
- Ibm ediscovery_analyzer 2.2
- Ibm ediscovery_manager 2.2
- Ibm filenet_capture 5.2
- Ibm filenet_capture 5.2.1
- Ibm filenet_content_manager 5.0
- Ibm filenet_content_manager 5.1
- Ibm filenet_integrated_document_management_desktop 4.0.2
- Ibm filenet_integrated_document_management_desktop 4.0.3
- Ibm infosphere_classification_module 8.7
- Ibm omnifind 8.5
- Ibm omnifind 9.1
- Ibm production_imaging_edition 5.0
- Ibm web_interface_for_content_management 1.0.1
- Ibm web_interface_for_content_management 1.0.2
- Ibm web_interface_for_content_management 1.0.3
- Ibm web_interface_for_content_management 1.0.4
- Kamel_software fastlook_2009
- Kroll_ontrack easyrecovery
- Kroll_ontrack powercontrols
- Marklogic server
- Mcafee groupshield 7.0.716.101
- Mcafee host_data_loss_prevention 9.0
- Newsoft presto!_pagemanager 9
- Novell groupwise 5.2.0
- Novell groupwise 5.5.0
- Novell groupwise 5.57E
- Novell groupwise 6.0.0
- Novell groupwise 6.0.0 SP1
- Novell groupwise 6.0.0 SP2
- Novell groupwise 6.0.0 SP3
- Novell groupwise 6.0.0 SP4
- Novell groupwise 6.0.1 Sp1
- Novell groupwise 6.5.0
- Novell groupwise 6.5.0 Post SP6
- Novell groupwise 6.5.0 SP1
- Novell groupwise 6.5.0 SP2
- Novell groupwise 6.5.0 SP3
- Novell groupwise 6.5.0 SP4
- Novell groupwise 6.5.0 SP5
- Novell groupwise 6.5.0 SP6
- Novell groupwise 6.5.0 SP6 Update 1
- Novell groupwise 6.5.2
- Novell groupwise 6.5.3
- Novell groupwise 6.5.4
- Novell groupwise 6.5.6
- Novell groupwise 6.5 SP6 Update 3
- Novell groupwise 8.0
- Novell groupwise 8.01X
- Novell groupwise 8.02
- Novell groupwise 8.02 HP1
- Novell groupwise 8.02 HP2
- Novell groupwise 8.0 HP1
- Novell groupwise 8.0 HP2
- Novell groupwise 8.0 SP1
- Novell groupwise 8.0 SP2
- Novell groupwise_internet_agent 8.0
- Oracle fusion_middleware 8.3.2.0
- Oracle fusion_middleware 8.3.5.0
- Symantec enterprise_vault 10.0
- Symantec enterprise_vault 7.5
- Symantec enterprise_vault 8.0
- Symantec enterprise_vault 8.0 SP4
- Symantec enterprise_vault 8.0 SP5
- Symantec enterprise_vault 9.0
- Symantec enterprise_vault 9.0.1
- Symantec enterprise_vault 9.0.2
References
- BugTraq: 48766
- CVE: CVE-2011-2264