Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2013-0418
HistoryJan 17, 2013 - 1:55 a.m.

CVE-2013-0418

2013-01-1701:55:06
[email protected]
web.nvd.nist.gov
34
cve-2013-0418
oracle
outside in technology
fusion middleware
vulnerability
buffer overflow

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.214 Low

EPSS

Percentile

96.5%

JSON

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) that can be triggered using a table header with a crafted “number of fields” value.

Affected configurations

NVD
Node
microsoftexchange_serverMatch2007sp3
OR
microsoftexchange_serverMatch2010sp2
Node
oraclefusion_middlewareMatch8.3.7.0
OR
oraclefusion_middlewareMatch8.4

Related

cvelist 2
prion 2
openvas 2
nessus 1
nvd 2
cve 1
securityvulns 4
zdi 1
checkpoint_advisories 2
oracle 1
cvelist
cvelist
CVE-2013-0418
2013-01-17 01:30:00
CVE-2013-0393
2013-01-17 01:30:00
prion
prion
Heap overflow
2013-01-17 01:55:00
Buffer overflow
2013-01-17 01:55:00
openvas
openvas
Microsoft Exchange Server Remote Code Execution Vulnerabilities (2809279)
2013-02-13 00:00:00
MS Exchange Server Remote Code Execution Vulnerabilities (2809279)
2013-02-13 00:00:00
nessus
nessus
MS13-012: Vulnerabilities in Microsoft Exchange Server Could Allow Remote Code Execution (2809279)
2013-02-12 00:00:00
nvd
nvd
CVE-2013-0418
2013-01-17 01:55:06
CVE-2013-0393
2013-01-17 01:55:05
cve
cve
CVE-2013-0393
2013-01-17 01:55:05
securityvulns
securityvulns
Secunia Research: Oracle Outside In Technology Paradox Database Handling Buffer Overflow
2013-01-21 00:00:00
Microsoft Exchange / FAST Search Server code execution
2013-02-14 00:00:00
Secunia Research: Oracle Outside In Technology Paradox Database Handling Denial of Service
2013-01-21 00:00:00
zdi
zdi
Oracle Outside In CorelDRAW File Parsing Remote Code Execution Vulnerability
2013-02-01 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle Outside In CorelDRAW File Parser Heap Buffer Overflow (CVE-2013-0418)
2013-02-25 00:00:00
Oracle Outside In Paradox Database Stream Filter Denial of Service (CVE-2013-0393)
2013-03-03 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2013
2013-01-15 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.9 Medium

AI Score

Confidence

Low

0.214 Low

EPSS

Percentile

96.5%

JSON
Related for CVE-2013-0418
cvelist2prion2openvas2nessus1nvd2cve1securityvulns4zdi1checkpoint_advisories2oracle1