CVE-2013-0393

Name of the Vulnerable Software and Affected Versions Oracle Fusion Middleware versions 8.3.7 through 8.4 Microsoft Exchange Server (affected versions not specified)

Description The issue allows attackers to affect availability. In the case of Microsoft Exchange Server, this can happen when a user views a specially crafted file through Outlook Web Access in a browser, causing the server to become unresponsive. The vulnerability does not allow code execution or user rights elevation.

Recommendations For Oracle Fusion Middleware versions 8.3.7 through 8.4, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Microsoft Exchange Server, consider restricting access to the WebReady Document Viewing feature until a fix is available.