New Search

Oracle Outside In Libraries Elevation of Privilege Vulnerabilities – CVE-2015-6013 (MS16-079)

oval:org.cisecurity:def:907

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0 8.5.1 and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters a different vulnerability than CVE-2015-4808 CVE-2015-6014 CVE-2015-6015 and CVE-2016-0432. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this issue is a stack-based buffer overflow in Oracle Outside In 8.5.2 and earlier which allows remote attackers to execute arbitrary code via a crafted WK4 file.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 10
  • Microsoft Windows Server 2003
  • Microsoft Windows Server 2008 R2
  • Microsoft Windows Server 2012 R2
  • Microsoft Windows 8.1
  • Microsoft Windows Vista
  • Microsoft Windows 7
  • Microsoft Windows Server 2012
  • Microsoft Windows Server 2008
Class:
vulnerability
Reference(s):
  • CVE-2015-6013
Product(s):
  • Microsoft Exchange Server 2016
  • Microsoft Exchange Server 2010
  • Microsoft Exchange Server 2013
  • Microsoft Exchange Server 2007