4.4
CVE-2011-2264
- EPSS 31.11%
- Veröffentlicht 21.07.2011 00:55:01
- Zuletzt bearbeitet 16.06.2026 23:31:01
- Quelle secalert_us@oracle.com
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.2.0 and 8.3.5.0 allows context-dependent attackers to affect confidentiality, integrity, and availability via unknown vectors related to Outside In Filters. NOTE: the previous information was obtained from the July 2011 CPU. Oracle has not commented on claims from a reliable third party that this is a stack-based buffer overflow in the imcdr2.flt library for the CorelDRAW parser.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Oracle ≫ Fusion Middleware Version8.3.2.0
Oracle ≫ Fusion Middleware Version8.3.5.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 31.11% | 0.98 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.4 | 3.4 | 6.4 |
AV:L/AC:M/Au:N/C:P/I:P/A:P
|
http://www-01.ibm.com/support/docview.wss?uid=swg21660640
http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html
http://www.us-cert.gov/cas/techalerts/TA11-201A.html
http://www.kb.cert.org/vuls/id/103425