CVE-2015-0474

Oracle Fusion Middleware 8.4.1, 8.5.0, 8.5.1 - Denial of Service in Outside In Filters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-0474.

AI-analyzed exploit summary The document describes a memory corruption vulnerability in Oracle Outside-In Technology caused by a crafted DOCX file. It includes a high-level technical overview and references to a PoC file but does not contain functional exploit code.

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.4.1, 8.5.0, and 8.5.1 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-0493.

Exploits (1)

exploitdb WRITEUP

doswindows

https://www.exploit-db.com/exploits/36788

View Code ZIP pw:eip

The document describes a memory corruption vulnerability in Oracle Outside-In Technology caused by a crafted DOCX file. It includes a high-level technical overview and references to a PoC file but does not contain functional exploit code.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Oracle Outside-In Technology

No auth needed

Prerequisites: Crafted DOCX file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (3)

Core 3

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/74139

Vendor Advisory x_refsource_confirm

http://www.oracle.com/technetwork/topics/security/cpuapr2015-2365600.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1032131

Scores

EPSS 0.0069

EPSS Percentile 47.7%

Details

Status published

Products (3)

oracle/fusion_middleware 8.4.1

oracle/fusion_middleware 8.5.0

oracle/fusion_middleware 8.5.1

Published Apr 16, 2015

Tracked Since Feb 18, 2026