Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in DB2 126.96.36.199 Accessories Suite (CVE-2011-2264, CVE-2011-0794, CVE-2011-0808)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  db2 psirtim psirthigh
0 Comments | 1,093 Visits
Oracle Outside In Technology contains exploitable vulnerabilities in the CorelDRAW (CVE-2011-2264) file parser, the File ID SDK (CVE-2011-0794), and file filters (CVE-2011-0808). Each of these vulnerabilities may allow a remote, unauthenticated user to execute arbitrary code on a vulnerable system when processing specially-crafted files using the Outside In Technology.
Affected product(s): DB2 Accessories Suite
Affected version(s): 9.7
For remediation and vulnerability details, refer to: