Check Point Advisories

Oracle Document Capture EasyMail SMTP AddAttachment Buffer Overflow

Vulnerability
Protection

Check Point Reference:	CPAI-2009-450
Date Published:	31 Jan 2010
Severity:	Medium
Last Updated:	Wednesday 19 November, 2014
Source:
Protection Provided by:	Security Gateway R81, R80, R77, R75
Who is Vulnerable?
Vulnerability Description	Oracle Document Capture is integrated with Oracle Imaging and Process Management and Oracle Universal Content Management products. Oracle Document Capture supplies document scanning and indexing capabilities. Both applications allow users to scan and import pages in batches into a document management system. Oracle Document Capture runs on Windows platforms. A stack buffer overflow vulnerability exists in Oracle Document Capture. The vulnerability is due to a boundary error that can occur when parsing a crafted argument passed to the AddAttachment method of the EasyMail SMTP ActiveX component. Remote attackers can exploit this vulnerability by enticing target users to visit a malicious web page. Successful exploitation could lead to arbitrary code execution on the target system.

Protection Overview

This protection will detect and block attempts to exploit this vulnerability.

In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.

Security Gateway R80 / R77 / R75

In the IPS tab, click Protections and find the Oracle Document Capture EasyMail SMTP AddAttachment Buffer Overflow protection using the Search tool and Edit the protection's settings.
Install policy on all Security Gateways.

This protection's log will contain the following information:

Attack Name: Web Client Enforcement Violation.
Attack Information: Oracle Document Capture EasyMail SMTP AddAttachment buffer overflow