Vulnerability Details : CVE-2015-4878
Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4877.
Products affected by CVE-2015-4878
- cpe:2.3:a:oracle:fusion_middleware:8.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:8.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:oracle:fusion_middleware:8.5.2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2015-4878
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 8 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2015-4878
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
1.5
|
LOW | AV:L/AC:M/Au:S/C:N/I:N/A:P |
2.7
|
2.9
|
NIST |
References for CVE-2015-4878
-
http://www.securityfocus.com/bid/77133
Oracle Fusion Middleware CVE-2015-4878 Local Security Vulnerability
-
http://packetstormsecurity.com/files/134089/Oracle-Outside-In-Buffer-Overflow.html
Oracle Outside In Buffer Overflow ≈ Packet Storm
-
https://www.exploit-db.com/exploits/38789/
Oracle Outside In PDF 8.5.2 - Parsing Memory Corruption (2)
-
http://www.securitytracker.com/id/1033898
Oracle Fusion Middleware Bugs Let Remote Users Access and Modify Data and Remote and Local Users Deny Service - SecurityTracker
-
http://www.securityfocus.com/archive/1/536762/100/0/threaded
SecurityFocus
-
http://www.oracle.com/technetwork/topics/security/cpuoct2015-2367953.html
Oracle Critical Patch Update - October 2015Patch;Vendor Advisory
Jump to