Vulnerability Description
Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 11.1.2.2, and Integration Services Server 11.1.2.1 and 11.1.2.2 has unknown impact and attack vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Oracle | Hyperion Interactive Reporting | 11.1.2.1 |
| Oracle | Essbase Server | 11.1.2.1 |
| Oracle | Hyperion Production Reporting Server | 11.1.2.1 |
| Oracle | Integration Services Server | 11.1.2.1 |
Related Weaknesses (CWE)
References
- https://blogs.oracle.com/sunsecurity/entry/cve_2012_3133_buffer_overflowVendor Advisory
- https://blogs.oracle.com/sunsecurity/entry/cve_2012_3133_buffer_overflowVendor Advisory
FAQ
What is CVE-2012-3133?
CVE-2012-3133 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Buffer overflow in the DataDirect ODBC driver, as used in Oracle Hyperion Interactive Reporting 11.1.2.1 and 11.1.2.2, Essbase Server 11.1.2.1 and 11.1.2.2, Production Reporting Server 11.1.2.1 and 11...
How severe is CVE-2012-3133?
CVE-2012-3133 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-3133?
Check the references section above for vendor advisories and patch information. Affected products include: Oracle Hyperion Interactive Reporting, Oracle Essbase Server, Oracle Hyperion Production Reporting Server, Oracle Integration Services Server.