Microsoft Corporation Information for VU#916896

Oracle Outside In 8.5.2 contains multiple stack buffer overflows



Vendor Statement

No statement is currently available from the vendor regarding this vulnerability.

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References



Microsoft Exchange 2007, 2010, and 2013 use Oracle Outside In for its WebReady document viewing feature. By viewing a document with OWA WebReady, arbitrary code may execute on the Exchange server.

If you have feedback, comments, or additional information about this vulnerability, please send us email.