Oracle Outside In Technology Handling Remote Heap-Based Buffer Overflow Vulnerability
26 Mar. 2013
Summary
Oracle Outside In Technology Paradox Database Stream Filter (vspdx.dll) Field Name number of fields Table Header Value Handling Remote suffers from heap-based buffer overflow vulnerability.
Vulnerable Systems:
* Oracle Outside in Technology 8.3.7 and prior
Oracle Outside In Technology contains an overflow condition in Paradox Database Stream Filter (vspdx.dll). The issue is triggered as user-supplied input is not properly validated when parsing field names. With a specially crafted number of fields value in a table header, a remote attacker can cause a heap-based buffer overflow, resulting in a denial of service or potentially execution of arbitrary code.