CVE-2013-0418Oracle Fusion Middleware vulnerability

10 documents5 sources
Severity
6.8MEDIUMNVD
EPSS
25.1%
top 3.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Microsoft Exchange ServerOracle Fusion Middleware
Timeline
PublishedJan 17
Latest updateMay 5

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) th

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

NVDoracle/fusion_middleware8.3.7.0, 8.4+1
NVDmicrosoft/exchange_server2007, 2010+1

🔴Vulnerability Details

2
GHSA
GHSA-rw5c-c8fm-hmv6: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 82022-05-05
CVEList
CVE-2013-0418: Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 82013-01-17

💥Exploits & PoCs

1
Exploit-DB
FreeBSD 9.1 - 'ftpd' Remote Denial of Service2013-02-05

📋Vendor Advisories

6
Red Hat
JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)2014-01-14
Red Hat
JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)2014-01-14
Red Hat
JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)2014-01-14
Red Hat
JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)2014-01-14
Red Hat
JDK: unspecified vulnerability fixed in 6u71 and 7u51 (Deployment)2014-01-14
CVE-2013-0418 — Oracle Fusion Middleware vulnerability | cvebase