| Name | Oracle.Document.Capture.BlackIce.DEVMODE.ActiveX.Access |
| Release Date | Jan 28, 2010 |
| Severity | High |
| Impact | System Compromise: Remote attackers can gain control of vulnerable systems. |
| Description | This indicates an attack attempt to exploit a buffer-overflow vulnerability
in Oracle Document Capture BlackIce.
The vulnerability may allow remote attackers to execute arbitrary code in the context of the application using the affected ActiveX control. Failed exploit attempts will likely cause the program to crash, resulting in a denial-of-service condition. |
| Affected Products | Oracle Document Capture 10g version 10.1.3.5.0 and older version |
| Recommended Actions | Upgrade to the latest version available from the vendor's website. |
| Reference/s | http://www.exploit-db.com/exploits/9805
http://www.vupen.com/english/advisories/2009/2796
|