APP: Oracle Secure Backup observiced.exe Buffer Overflow (1)
This signature detects attempts to exploit a known vulnerability against Oracle Secure Backup daemon. A successful attack can lead to arbitrary code execution.
Extended Description
Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.2.0.3 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the January 2010 CPU. Oracle has not commented on claims from a reliable researcher that this is a buffer overflow in observiced.exe that allows remote attackers to execute arbitrary code via vectors related to a "reverse lookup of connections" to TCP port 10000.
Affected Products
Oracle secure_backup
Short Name
APP:OBSERVICED-BOF
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
(1) Backup Buffer CVE-2010-0072 Oracle Overflow Secure bid:37733 observiced.exe
Release Date
06/12/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
Port
TCP/10000
False Positive
Unknown
Vendors
Oracle
CVSS Score
10.0