Signature Detail

HTTP: Oracle Outside In JPEG 2000 QCD Segment Processing Heap Buffer Overflow

This signature detects attempts to exploit a known buffer overflow vulnerability in Oracle Outside-In, a set of libraries used to decode many file formats. It is due to handling the QCD segments in JPEG 2000 files. A successful attack can lead to arbitrary code execution in the context of the affected application.

Extended Description

Oracle Outside In Technology is prone to a remote code-execution vulnerability. The 'Outside In Filters' sub component is affected. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions. This vulnerability affects the following supported versions: 8.3.5, 8.3.7

Affected Products

• Accessdata_group ftk 3.2
• Accessdata_group ftk 3.3
• Accessdata_group ftk 3.4
• Accessdata_group ftk 4.0
• Acd_systems_inc canvas 14
• Guidance_software encase_forensics 6.19.3
• Guidance_software encase_forensics 7.04
• Mcafee security_for_microsoft_exchange 7.6
• Mcafee security_for_microsoft_sharepoint 2.5
• Microsoft exchange_server 2007 SP3
• Microsoft exchange_server_2007 SP 1
• Microsoft exchange_server_2007 SP2
• Microsoft exchange_server_2007 SP3
• Microsoft exchange_server_2010 SP1
• Microsoft exchange_server_2010 SP2
• Microsoft fast_search_server_2010_for_sharepoint
• Microsoft office_sharepoint_server_2010 SP1
• Oracle oracle_outside_in_technology 8.3.5
• Oracle oracle_outside_in_technology 8.3.7

References

• BugTraq: 54500
• CVE: CVE-2012-1769