CVE-2018-11056

Name of the Vulnerable Software and Affected Versions: RSA BSAFE Micro Edition Suite versions prior to 4.1.6.1 RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3 Oracle Database Server (affected versions not specified) Oracle Communications IP Service Activator (affected versions not specified) Enterprise Manager Ops Center (affected versions not specified)

Description: The issue is related to uncontrolled resource consumption, potentially leading to a denial of service. A remote attacker could exploit this by using maliciously constructed ASN.1 data to exhaust the stack.

Recommendations: For RSA BSAFE Micro Edition Suite versions prior to 4.1.6.1, update to version 4.1.6.1 or later. For RSA BSAFE Crypto-C Micro Edition versions prior to 4.0.5.3, update to version 4.0.5.3 or later. For Oracle Database Server, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Oracle Communications IP Service Activator, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Enterprise Manager Ops Center, at the moment, there is no information about a newer version that contains a fix for this vulnerability.