Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:802D483A87BDAF7507735E03DC6E599F
HistoryAug 05, 2011 - 12:00 a.m.

Oracle Outside In CDR File Parser Stack Buffer Overflow

2011-08-0500:00:00
SAINT Corporation
download.saintcorporation.com
12

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.879 High

EPSS

Percentile

98.6%

JSON

Added: 08/05/2011
CVE: CVE-2011-2264
BID: 48766
OSVDB: 73912

Background

Oracle Outside In is a suite of Software Development Kits (SDKs) and tools that provide functionality for reading and writing many different file formats. The Outside In SDK is embedded by multiple client and server products that need parsing of various file formats.

Problem

Outside In supports Corel Corporation’s CDR file format used by the vector graphics editor CorelDRAW.

Resolution

Patches to Outside In are described in the Oracle Critical Patch Update Advisory for July 2011.

Update products that incorporate the vulnerable version of Outside In, such as Avantstar Quick View Plus when updates become available.

References

<http://secunia.com/advisories/45297&gt;
<http://www.kb.cert.org/vuls/id/520721&gt;

Limitations

Exploit works on Avantstar Quick View Plus 11.1.0 Standard Edition.

Platforms

Windows

Related

prion 1
saint 3
checkpoint_advisories 2
cve 1
cert 1
nessus 1
ibm 2
securityvulns 1
oracle 1
prion
prion
Stack overflow
2011-07-21 00:55:00
saint
saint
Oracle Outside In CDR File Parser Stack Buffer Overflow
2011-08-05 00:00:00
Oracle Outside In CDR File Parser Stack Buffer Overflow
2011-08-05 00:00:00
Oracle Outside In CDR File Parser Stack Buffer Overflow
2011-08-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle Outside In CorelDRAW File Parser Stack Buffer Overflow (CVE-2011-2264)
2011-09-27 00:00:00
Oracle Outside In CorelDRAW File Parser Integer Overflow (CVE-2011-2264; CVE-2011-3541)
2011-12-06 00:00:00
cve
cve
CVE-2011-2264
2011-07-21 00:55:00
cert
cert
Oracle Outside In CorelDRAW file parser stack buffer overflow
2011-07-19 00:00:00
nessus
nessus
Symantec Enterprise Vault / Oracle Outside In Multiple Vulnerabilities (SYM11-011)
2011-10-07 00:00:00
ibm
ibm
Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in DB2 9.7.0.4 Accessories Suite (CVE-2011-2264, CVE-2011-0794, and CVE-2011-0808)
2022-09-25 19:56:02
Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in ECM Products (CVE-2011-2264, CVE-2011-0794, and CVE-2011-0808)
2022-08-19 23:26:06
securityvulns
securityvulns
Oracle / Sun / Peoplesoft applications multiple security vulnerabilities
2011-08-01 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2011
2011-12-15 00:00:00

4.4 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

0.879 High

EPSS

Percentile

98.6%

JSON
Related for SAINT:802D483A87BDAF7507735E03DC6E599F
prion1saint3checkpoint_advisories2cve1cert1nessus1ibm2securityvulns1oracle1