Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in DB2 22.214.171.124 Accessories Suite (CVE-2011-2264, CVE-2011-0794, CVE-2011-0808)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Emneord:  db2 psirtim psirthigh
0 kommentarer | 1.002 besøg
Oracle Outside In Technology contains exploitable vulnerabilities in the CorelDRAW (CVE-2011-2264) file parser, the File ID SDK (CVE-2011-0794), and file filters (CVE-2011-0808). Each of these vulnerabilities may allow a remote, unauthenticated user to execute arbitrary code on a vulnerable system when processing specially-crafted files using the Outside In Technology.
Affected product(s): DB2 Accessories Suite
Affected version(s): 9.7
For remediation and vulnerability details, refer to: