2 matches found
Oracle Tuxedo Jolt Protocol Heap Buffer Overflow (CVE-2017-10278)
A heap buffer overflow vulnerability exists in Oracle's Tuxedo and PeopleSoft products. This vulnerability is due a lack of length field checking in JOLT protocol structure. A successful attack could lead to remote code execution...
CVE-2017-10278
CVE-2017-10278 is a heap overflow in Oracle Tuxedo’s Jolt protocol handling, affecting Oracle Fusion Middleware/Tuxedo components version 11.1.1, 12.1.1, 12.1.3 and 12.2.2. The underlying issue is a lack of proper length-field checks in the JOLT protocol structure, enabling an unauthenticated rem...