CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-6013

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1540%
EPSS Percentile28.44th
Published2016年1月22日
Last Modified2026年5月6日

Vulnerability Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4808, CVE-2015-6014, CVE-2015-6015, and CVE-2016-0432. NOTE: the previous information is from the January 2016 CPU. Oracle has not commented on third-party claims that this issue is a stack-based buffer overflow in Oracle Outside In 8.5.2 and earlier, which allows remote attackers to execute arbitrary code via a crafted WK4 file.

Affected Platforms (CPE)

📦
Oracle

Outside In Technology

= 8.5.0
📦
Oracle

Outside In Technology

= 8.5.1
📦
Oracle

Outside In Technology

= 8.5.2

References & Advisories

🔗 http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
🔗 http://www.securityfocus.com/bid/81227
🔗 http://www.securitytracker.com/id/1034711
🔗 https://www.kb.cert.org/vuls/id/916896
🔗 http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
🔗 http://www.securityfocus.com/bid/81227
🔗 http://www.securitytracker.com/id/1034711
🔗 https://www.kb.cert.org/vuls/id/916896

相關漏洞威脅

CVE-2015-601510.0

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows...

CVE-2015-601410.0

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows...

CVE-2017-32669.8

Vulnerability in the Oracle Outside In Technology component of Oracle Fusion Middleware (subcomponent: Outside In Filters). Suppor...

CVE-2021-20678.6

Vulnerability in the Oracle Outside In Technology product of Oracle Fusion Middleware (component: Outside In Filters). Supported v...