PT-2012-4501 · Progress+1 · Datadirect Jdbc Driver+4
Published
2012-12-21
·
Updated
2013-01-08
·
CVE-2012-3133
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
DataDirect ODBC driver as used in Oracle Hyperion Interactive Reporting versions 11.1.2.1 through 11.1.2.2
DataDirect ODBC driver as used in Essbase Server versions 11.1.2.1 through 11.1.2.2
DataDirect ODBC driver as used in Production Reporting Server versions 11.1.2.1 through 11.1.2.2
DataDirect ODBC driver as used in Integration Services Server versions 11.1.2.1 through 11.1.2.2
Description
A buffer overflow issue exists in the DataDirect ODBC driver. The impact and attack vectors of this issue are not specified.
Recommendations
For Oracle Hyperion Interactive Reporting versions 11.1.2.1 through 11.1.2.2, update to a version that includes a fix for the buffer overflow issue in the DataDirect ODBC driver.
For Essbase Server versions 11.1.2.1 through 11.1.2.2, update to a version that includes a fix for the buffer overflow issue in the DataDirect ODBC driver.
For Production Reporting Server versions 11.1.2.1 through 11.1.2.2, update to a version that includes a fix for the buffer overflow issue in the DataDirect ODBC driver.
For Integration Services Server versions 11.1.2.1 through 11.1.2.2, update to a version that includes a fix for the buffer overflow issue in the DataDirect ODBC driver.
At the moment, there is no information about a newer version that contains a fix for this issue.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Datadirect Jdbc Driver
Essbase Server
Sql Server Integration Services
Oracle Hyperion Interactive Reporting
Production Reporting Server