Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in ECM Products (CVE-2011-2264, CVE-2011-0794, CVE-2011-0808)
IBM PSIRT 270004PFE3 firstname.lastname@example.org | | Tags:  psirthigh psirtindustry ecm
0 Comments | 1,455 Visits
Oracle Outside In Technology contains exploitable vulnerabilities in the CorelDRAW (CVE-2011-2264) file parser, the File ID SDK (CVE-2011-0794), and file filters (CVE-2011-0808). Each of these vulnerabilities may allow a remote, unauthenticated user to execute arbitrary code on a vulnerable system when processing specially-crafted files using the Outside In Technology.
CVE(s): CVE-2011-2264, CVE-2011-0794, CVE-2011-0808
For a list of affected IBM Enterprise Content Management (ECM) products and remediation details, refer to: