Vulnerability CVE-2015-4878


Published: 2015-10-21   Modified: 2015-10-23

Description:
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4877.

See advisories in our WLB2 database:
Topic
Author
Date
High
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption Vulnerability
Francis Provench...
24.11.2015

Type:

CWE-noinfo

CVSS2 => (AV:L/AC:M/Au:S/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
1.5/10
2.9/10
2.7/10
Exploit range
Attack complexity
Authentication
Local
Medium
Single time
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Oracle -> Fusion middleware 

 References:
http://packetstormsecurity.com/files/134089/Oracle-Outside-In-Buffer-Overflow.html
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
http://www.securityfocus.com/archive/1/536762/100/0/threaded
http://www.securityfocus.com/bid/77133
http://www.securitytracker.com/id/1033898
https://www.exploit-db.com/exploits/38789/

Copyright 2021, cxsecurity.com

 

Back to Top