QwikSec

Security Database

CVE

CWE

Training

CVE-2013-5791

Published: Oct 16, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.0 and 8.4.1 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters. NOTE: the previous information is from the October 2013 CPU. Oracle has not commented on claims from a third party that the issue is a stack-based buffer overflow in the Microsoft Access 1.x parser in vsacs.dll before 8.4.0.108 and before 8.4.1.52, which allows attackers to execute arbitrary code via a long field (aka column) name.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

http://www.citadelo.com/en/ms13-105-oracle-outside-in-mdb-parsing-vulnerability-cve-2013-5791/

x_refsource_MISC

http://www-01.ibm.com/support/docview.wss?uid=swg21660640

x_refsource_CONFIRM

third-party-advisory

x_refsource_CERT-VN

http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MS

vdb-entry

x_refsource_SECTRACK

exploit

x_refsource_EXPLOIT-DB

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.