Oracle Data Integrator Type Confusion Vulnerability (Mar 24, 2015)

By

Oracle Data Integrator is a platform for maintaining the data consistency throughout the system. It provides the integration in situations like high-volume, high-performance batch loads, to event-driven, trickle-feed integration processes, to SOA-enabled data services.

Trillium Software System provides the third party software which is integrated in Oracle data Integrator. Oracle Data Integrator installs various ActiveX controls on target provided by Trillium Software System. An untrusted pointer dereference vulnerability exists in Oracle Data Integrator. The vulnerability is caused by a lack of validation on the value assigned to the parameter of the TSS12.LoaderWizard.lwctrl ActiveX control. Successful exploitation can lead to arbitrary code execution in the security context of the logged-in user. An unsuccessful attack may lead to abnormal termination of the browser.

Dell SonicWALL has released an IPS signature to detect and block exploitation attempts targeting this vulnerability. The signature is listed below:

  • 10824 Oracle DataPreview Type Confusion
Security News
The SonicWall Capture Labs Threat Research Team gathers, analyzes and vets cross-vector threat information from the SonicWall Capture Threat network, consisting of global devices and resources, including more than 1 million security sensors in nearly 200 countries and territories. The research team identifies, analyzes, and mitigates critical vulnerabilities and malware daily through in-depth research, which drives protection for all SonicWall customers. In addition to safeguarding networks globally, the research team supports the larger threat intelligence community by releasing weekly deep technical analyses of the most critical threats to small businesses, providing critical knowledge that defenders need to protect their networks.