Signature Detail

Short Name	HTTP:ORACLE:OS-2-METAFILE-BOF
Severity	High
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (2)
Release Date	2014/02/18
Update Number	2346
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (2)

This signature detects attempts to exploit a known vulnerability in Oracle Outside In OS 2. The vulnerability is due to an error while processing OS/2 Metafiles. Oracle Outside-In is embedded in many enterprise applications. This vulnerability can be exploited by causing an application that uses the vulnerable libraries to handle a malformed file. Depending on the application, user interaction may be required. Successful exploitation can result in execution of arbitrary code or a denial of service condition in the context of the affected application.

References

BugTraq: 64825
CVE: CVE-2013-5879

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Oracle Outside In OS 2 Metafile Parser Stack Buffer Overflow (2)

References