Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
1.5
CVSSv2

CVE-2013-5791

Published: 16/10/2013 Updated: 12/10/2018
CVSS v2 Base Score: 1.5 | Impact Score: 2.9 | Exploitability Score: 2.7
VMScore: 155
Vector: AV:L/AC:M/Au:S/C:N/I:N/A:P
Subscribe to Oracle

Vulnerability Summary

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent malicious users to affect availability via unknown vectors related to Outside In Filters. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is a stack-based buffer overflow in the Microsoft Access 1.x parser in vsacs.dll prior to 8.4.0.108 and prior to 8.4.1.52, which allows malicious users to execute arbitrary code via a long field (aka column) name.

Vulnerable Product Search on Vulmon Subscribe to Product

oracle fusion middleware 8.4

oracle fusion middleware 8.4.1

Exploits

Exploit DB: Oracle Outside In MDB - File Parsing Stack Buffer Overflow (PoC)
#!/usr/bin/python # # Exploit Title: Oracle Outside In MDB File Parsing Stack Based Buffer Overflow PoC # Date: 16th January 2014 # PoC Author: Citadelo # Vendor Homepage: wwworaclecom # Software Link: wwworaclecom/us/technologies/embedded/025613htm # Version: <= 84152 and < 840108 # CVE : CVE-2013-5791 # Reference: h ...
Exploit DB: Oracle Outside In Buffer Overflow
Oracle Outside In MDB file parsing stack buffer overflow proof of concept exploit Affects versions 84152 and below and versions below 840108 ...

References

NVD-CWE-noinfohttp://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.htmlhttp://www.securitytracker.com/id/1029190http://www.kb.cert.org/vuls/id/953241http://secunia.com/advisories/56243http://www-01.ibm.com/support/docview.wss?uid=swg21660640http://secunia.com/advisories/56237http://secunia.com/advisories/56241http://www.securityfocus.com/bid/63076http://www.exploit-db.com/exploits/31222http://www.citadelo.com/en/ms13-105-oracle-outside-in-mdb-parsing-vulnerability-cve-2013-5791/https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-105https://nvd.nist.govhttps://www.exploit-db.com/exploits/31222/https://www.kb.cert.org/vuls/id/953241
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook