CVE-2013-0418

medium Microsoft
CVSS v3 Base Score
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS Score
25.1%
Exploitation probability in 30 days
Top 4% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
P
Integrity
P
Availability
P
Published: January 17, 2013 (4866 days ago)
Last Modified: April 29, 2026
Vendor: Microsoft
Source: NVD

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) that can be triggered using a table header with a crafted "number of fields" value.

CWE

NVD-CWE-noinfo

Affected Products

microsoft exchange serveroracle fusion middleware

References

🔗 archives.neohapsis.com 🔗 www-01.ibm.com 🔗 www.mandriva.com 🔗 www.oracle.com 🔗 www.us-cert.gov