CVE-2015-4877

Oracle Fusion Middleware 8.5.0-8.5.2 - Denial of Service in Outside In Filters

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-4877. PoCs published by Francis Provencher.

AI-analyzed exploit summary The document describes a heap memory corruption vulnerability in Oracle Outside In Technology (CVE-2015-4877) when processing PDFs with malformed JPEG height values. It includes a timeline and references to PoC files but does not contain exploit code itself.

Description

Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.5.0, 8.5.1, and 8.5.2 allows local users to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2015-4878.

Exploits (1)

exploitdb WRITEUP

by Francis Provencher · textdoswindows

https://www.exploit-db.com/exploits/38788

View Code ZIP pw:eip

The document describes a heap memory corruption vulnerability in Oracle Outside In Technology (CVE-2015-4877) when processing PDFs with malformed JPEG height values. It includes a timeline and references to PoC files but does not contain exploit code itself.

Classification

Writeup 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Theoretical

Target: Oracle Outside In Technology 8.5.2

No auth needed

Prerequisites: User interaction to open a malicious PDF file

MITRE ATT&CK