CVE-2012-0110 - Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware

CVE-2012-0110

Summary

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5 and 8.3.7 allows context-dependent attackers to affect confidentiality, integrity, and availability, related to Outside In Image Export SDK.

References

Vulnerable Configurations

cpe:2.3:a:oracle:fusion_middleware:8.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:8.3.5.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:8.3.7.0:*:*:*:*:*:*:*
cpe:2.3:a:oracle:fusion_middleware:8.3.7.0:*:*:*:*:*:*:*

CVSS

Base:	4.4 (as of 14-01-2014 - 04:14)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:M/Au:N/C:P/I:P/A:P

refmap via4

bid	51452
confirm	http://www-01.ibm.com/support/docview.wss?uid=swg21660640 http://www.oracle.com/technetwork/topics/security/cpujan2012-366304.html

saint via4

bid	51452
description	Oracle Outside In Library OOXML Overflow
osvdb	78411
title	oracle_outsidein_library_ooxml_overflow
type	client

Last major update

14-01-2014 - 04:14

Published

18-01-2012 - 22:55

Last modified

14-01-2014 - 04:14