// For flags

CVE-2011-0794

 

Severity Score

4.4
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.5.0 allows local users to affect confidentiality, integrity, and availability, related to File ID SDK. NOTE: the previous information was obtained from the April 2011 CPU. Oracle has not commented on claims from a reliable third party that this issue is in (a) sccut.dll or (b) libsc_ut.so in Outside In 8.3.5.x through 8.3.5.5684, as used when using the CAB file identification functionality to parse OneNote (.onepkg) files and other formats.

Vulnerabilidad no especificada en el componente Oracle Outside In Technology en Oracle Fusion Middleware 8.3.5.0 permite a usuarios locales afectar a la confidencialidad, integridad y disponibilidad, relacionado con File ID SDK. NOTA: la información anterior fue obtenida de la CPU de Abril de 2011. Oracle no ha comentado sobre alegaciones de un tercero confiable que este problema está en (a) sccut.dll o (b) libsc_ut.so en Outside In 8.3.5.x hasta la versión 8.3.5.5684, según se usa cuando se utiliza la funcionalidad de identificación de archivo CAB para interpretar archivos OneNote (.onepkg) y otros formatos.

*Credits: N/A
CVSS Scores
Attack Vector
Local
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2011-02-04 CVE Reserved
  • 2011-04-20 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Oracle
Search vendor "Oracle"
Fusion Middleware
Search vendor "Oracle" for product "Fusion Middleware"
8.3.5.0
Search vendor "Oracle" for product "Fusion Middleware" and version "8.3.5.0"
-
Affected