CVE-2012-3133
Severity Score
6.8
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 11.1.2.2, and Integration Services Server 11.1.2.1 and 11.1.2.2 has unknown impact and attack vectors.
Desbordamiento de bĂșfer en el controlador DataDirect ODBC, como se usa en Oracle Hyperion Interactive Reporting v11.1.2.1 and v11.1.2.2, Essbase Server v11.1.2.1 y v11.1.2.2, Production Reporting Server v11.1.2.1 y v11.1.2.2, e Integration Services Server v11.1.2.1 y v11.1.2.2 tiene un impacto y vectores de ataque desconocidos.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-06-06 CVE Reserved
- 2012-12-21 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://blogs.oracle.com/sunsecurity/entry/cve_2012_3133_buffer_overflow | 2013-01-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Oracle Search vendor "Oracle" | Hyperion Interactive Reporting Search vendor "Oracle" for product "Hyperion Interactive Reporting" | 11.1.2.1 Search vendor "Oracle" for product "Hyperion Interactive Reporting" and version "11.1.2.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Hyperion Interactive Reporting Search vendor "Oracle" for product "Hyperion Interactive Reporting" | 11.1.2.2 Search vendor "Oracle" for product "Hyperion Interactive Reporting" and version "11.1.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Essbase Server Search vendor "Oracle" for product "Essbase Server" | 11.1.2.1 Search vendor "Oracle" for product "Essbase Server" and version "11.1.2.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Essbase Server Search vendor "Oracle" for product "Essbase Server" | 11.1.2.2 Search vendor "Oracle" for product "Essbase Server" and version "11.1.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Hyperion Production Reporting Server Search vendor "Oracle" for product "Hyperion Production Reporting Server" | 11.1.2.1 Search vendor "Oracle" for product "Hyperion Production Reporting Server" and version "11.1.2.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Hyperion Production Reporting Server Search vendor "Oracle" for product "Hyperion Production Reporting Server" | 11.1.2.2 Search vendor "Oracle" for product "Hyperion Production Reporting Server" and version "11.1.2.2" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Integration Services Server Search vendor "Oracle" for product "Integration Services Server" | 11.1.2.1 Search vendor "Oracle" for product "Integration Services Server" and version "11.1.2.1" | - |
Affected
| ||||||
| Oracle Search vendor "Oracle" | Integration Services Server Search vendor "Oracle" for product "Integration Services Server" | 11.1.2.2 Search vendor "Oracle" for product "Integration Services Server" and version "11.1.2.2" | - |
Affected
| ||||||