Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:CFC6EA2B6A570F422C1C957C243AD622
HistoryMay 02, 2012 - 12:00 a.m.

Oracle WebCenter Forms Recognition SSSplitter ActiveX Overwrite

2012-05-0200:00:00
SAINT Corporation
download.saintcorporation.com
29

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.954 High

EPSS

Percentile

99.2%

JSON

Added: 05/02/2012
CVE: CVE-2012-1710
BID: 53062
OSVDB: 81366

Background

Oracle WebCenter Imaging is a combined document management and business process management suite, marketed as a component of the Oracle Fusion Middleware portfolio of products. Oracle Forms Recognition (OFR) is an intelligent data capture solution that integrates with WebCenter Imaging.

Problem

Oracle Forms Recognition (OFR) installs an ActiveX control named Sssplt30.ocx on the systems of its users. In OFR versions 10.1.3.5 and prior, the Save method of the SSSplitter control does not properly validate the parameters. An attacker can leverage this weakness and construct a malicious SSSplitter object, then save it to a location of their choice. This may result in the attacker gaining full execution access on the target’s system.

Resolution

Apply the updates suggested in the vendor advisory.

References

<http://www.oracle.com/technetwork/topics/security/cpuapr2012-366314.html&gt;
<http://www.zerodayinitiative.com/advisories/ZDI-12-074/&gt;

Limitations

This exploit has been tested against Oracle WebCenter Forms Recognition 10.1.3.5 on Windows XP SP3 English (DEP OptIn). The system must be rebooted before the payload is executed.

Platforms

Windows

Related

saint 3
checkpoint_advisories 2
cisa_kev 1
prion 2
nessus 1
cve 2
attackerkb 2
securityvulns 1
oracle 1
saint
saint
Oracle WebCenter Forms Recognition SSSplitter ActiveX Overwrite
2012-05-02 00:00:00
Oracle WebCenter Forms Recognition SSSplitter ActiveX Overwrite
2012-05-02 00:00:00
Oracle WebCenter Forms Recognition SSSplitter ActiveX Overwrite
2012-05-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Oracle WebCenter Forms Recognition Sssplt30.ocx Arbitrary File Creation - Ver2 (CVE-2012-1710)
2015-05-18 00:00:00
Oracle WebCenter Forms Recognition Sssplt30.ocx Arbitrary File Creation (CVE-2012-1710)
2012-07-23 00:00:00
cisa_kev
cisa_kev
Oracle Fusion Middleware Unspecified Vulnerability
2022-05-25 00:00:00
prion
prion
Design/Logic Flaw
2012-05-03 22:55:00
Design/Logic Flaw
2012-05-03 22:55:00
nessus
nessus
Oracle Forms Recognition Multiple ActiveX Control Arbitrary File Overwrite Vulnerabilities
2012-11-06 00:00:00
cve
cve
CVE-2012-1710
2012-05-03 22:55:00
CVE-2012-1709
2012-05-03 22:55:00
attackerkb
attackerkb
CVE-2012-1709
2012-05-03 00:00:00
CVE-2012-1710
2012-05-03 00:00:00
securityvulns
securityvulns
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-12-02 00:00:00
oracle
oracle
Oracle Critical Patch Update - April 2012
2012-07-19 00:00:00

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.954 High

EPSS

Percentile

99.2%

JSON
Related for SAINT:CFC6EA2B6A570F422C1C957C243AD622
saint3checkpoint_advisories2cisa_kev1prion2nessus1cve2attackerkb2securityvulns1oracle1