Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
BID:51452
Info
Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
| Bugtraq ID: | 51452 |
| Class: | Unknown |
| CVE: |
CVE-2012-0110 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 17 2012 12:00AM |
| Updated: | Mar 05 2012 09:00PM |
| Credit: | Will Dormann of the CERT/CC |
| Vulnerable: |
X1 Technologies X1 Professional Client 6.7.2 windream windream server 0 Symantec Enterprise Vault 9.0.2 Symantec Enterprise Vault 9.0.1 Symantec Enterprise Vault 9.0 Symantec Enterprise Vault 8.0 SP5 Symantec Enterprise Vault 8.0 SP4 Symantec Enterprise Vault 8.0 Symantec Enterprise Vault 7.5 Symantec Enterprise Vault 10.0 Perlustro ILook 0 Oracle Outside In 8.3.7 Oracle Outside In 8.3.5.0 Novell Groupwise 8.02 HP3 Novell Groupwise 8.02 HP2 Novell Groupwise 8.02 HP1 Novell Groupwise 8.02 Novell Groupwise 8.01x Novell Groupwise 8.0 SP2 Novell Groupwise 8.0 SP1 Novell Groupwise 8.0 HP3 Novell Groupwise 8.0 HP2 Novell Groupwise 8.0 HP1 Novell Groupwise 8.0 NewSoft Presto! PageManager 9 McAfee Host Data Loss Prevention 9.0 McAfee GroupShield 7.0.716.101 MarkLogic Server 4.2 MarkLogic Server 4.1 MarkLogic Server 4.0 Lucion FileCenter 7.1.0.35 Kroll Ontrack PowerControls 0 Kroll Ontrack EasyRecovery 0 kCura Relativity 0 Kamel Software Fastlook 2009 0 HP Trim 0 Guidance Software Forensics 6.19.2 Guidance Software Encase Forensics 7.02.02 Guidance Software Encase Forensics 6.19.2 Avantstar Inc. Quick View Plus 11 ACD Systems Inc ACDSee Canvas 12 AccessData FTK 3.4 AccessData FTK 3.3 AccessData FTK 3.2 |
| Not Vulnerable: | |
Discussion
Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
Oracle Outside In is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.
The 'Outside In Image Export SDK' sub component is affected.
This vulnerability affects the following supported versions:
8.3.5
8.3.7
Oracle Outside In is prone to a remote code-execution vulnerability.
An attacker can exploit this issue to execute arbitrary code with the privileges of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition.
The 'Outside In Image Export SDK' sub component is affected.
This vulnerability affects the following supported versions:
8.3.5
8.3.7
Exploit / POC
Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
Solution:
Vendor updates are available. Please contact the vendor for more information.
Solution:
Vendor updates are available. Please contact the vendor for more information.
References
Oracle Outside In CVE-2012-0110 Remote Code Execution Vulnerability
References:
References: