CVE-2012-3133

{"id": "CVE-2012-3133", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-12-21T05:46:15.980", "references": [{"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2012_3133_buffer_overflow", "tags": ["Vendor Advisory"], "source": "secalert_us@oracle.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 11.1.2.2, and Integration Services Server 11.1.2.1 and 11.1.2.2 has unknown impact and attack vectors."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en el controlador DataDirect ODBC, como se usa en Oracle Hyperion Interactive Reporting v11.1.2.1 and v11.1.2.2, Essbase Server v11.1.2.1 y v11.1.2.2, Production Reporting Server v11.1.2.1 y v11.1.2.2, e Integration Services Server v11.1.2.1 y v11.1.2.2 tiene un impacto y vectores de ataque desconocidos."}], "lastModified": "2013-01-08T05:00:00.000", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:hyperion_interactive_reporting:11.1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C78DD13A-B296-454C-A2E2-E4F90B85609D"}, {"criteria": "cpe:2.3:a:oracle:hyperion_interactive_reporting:11.1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D88A52E1-FBED-47FC-A05A-C9CABA13F3DF"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:essbase_server:11.1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5E4F7B6-62E8-4AFE-8A03-B1AF70201FBD"}, {"criteria": "cpe:2.3:a:oracle:essbase_server:11.1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DEED768E-50B3-4542-824C-BCFD39E6B54D"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:hyperion_production_reporting_server:11.1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F1E39D5-B5F3-4776-B664-F0E2F384AEFD"}, {"criteria": "cpe:2.3:a:oracle:hyperion_production_reporting_server:11.1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A11A1134-105C-4B54-BAE2-2604FA877B85"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:oracle:integration_services_server:11.1.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF2602DB-A179-43DC-ADB2-9E86E1D5FEA0"}, {"criteria": "cpe:2.3:a:oracle:integration_services_server:11.1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3D128950-9558-416C-AFD1-0CCF513D3B1D"}], "operator": "OR"}]}], "sourceIdentifier": "secalert_us@oracle.com"}