ID CVE-2012-1773
Summary Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2012-1766, CVE-2012-1767, CVE-2012-1769, CVE-2012-1770, CVE-2012-1771, CVE-2012-1772, CVE-2012-3106, CVE-2012-3107, CVE-2012-3108, and CVE-2012-3110. Per: http://www.oracle.com/technetwork/topics/security/cpujul2012-392727.html 'Outside In Technology is a suite of software development kits (SDKs). It does not have any particular associated protocol. If the hosting software passes data received over the network to Outside In Technology code, the CVSS score would increase to 6.8.'
References
Vulnerable Configurations
  • cpe:2.3:a:oracle:fusion_middleware:8.3.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:8.3.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:oracle:fusion_middleware:8.3.7.0:*:*:*:*:*:*:*
    cpe:2.3:a:oracle:fusion_middleware:8.3.7.0:*:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 12-10-2018 - 22:02)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:N/A:P
msbulletin via4
  • bulletin_id MS12-067
    bulletin_url
    date 2012-10-09T00:00:00
    impact Remote Code Execution
    knowledgebase_id 2742321
    knowledgebase_url
    severity Important
    title Vulnerability in FAST Search Server 2010 for SharePoint Parsing Could Allow Remote Code Execution
  • bulletin_id MS12-058
    bulletin_url
    date 2012-08-14T00:00:00
    impact Remote Code Execution
    knowledgebase_id 2740358
    knowledgebase_url
    severity Critical
    title Vulnerability in Microsoft Exchange Server WebReady Document Viewing Could Allow Remote Code Execution
oval via4
accepted 2012-11-05T04:00:09.667-05:00
class vulnerability
contributors
  • name SecPod Team
    organization SecPod Technologies
  • name Chandan S
    organization SecPod Technologies
definition_extensions
  • comment Microsoft Exchange Server 2007 SP3 is installed
    oval oval:org.mitre.oval:def:15784
  • comment Microsoft Exchange Server 2010 SP1 is installed
    oval oval:org.mitre.oval:def:15339
  • comment Microsoft Exchange Server 2010 SP2 is installed
    oval oval:org.mitre.oval:def:14151
  • comment Microsoft FAST Search Server 2010 for SharePoint is installed
    oval oval:org.mitre.oval:def:15918
description Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters.
family windows
id oval:org.mitre.oval:def:15568
status accepted
submitted 2012-08-20T10:24:13
title Oracle Outside In contains multiple exploitable vulnerabilities - VIII
version 8
refmap via4
bid 54548
cert-vn VU#118913
confirm
mandriva MDVSA-2013:150
sectrack 1027264
xf outsideintechnology-outinfilt-dos(77006)
Last major update 12-10-2018 - 22:02
Published 17-07-2012 - 23:55
Last modified 12-10-2018 - 22:02
Back to Top