oval:org.mitre.oval:def:16251

Definition Id: oval:org.mitre.oval:def:16251

Oval ID:	oval:org.mitre.oval:def:16251
Title:	Vulnerability in Microsoft Exchange Server Could Allow Remote Code Execution - CVE-2013-0418 - MS13-012
Description:	Unspecified vulnerability in the Oracle Outside In Technology component in Oracle Fusion Middleware 8.3.7 and 8.4 allows context-dependent attackers to affect availability via unknown vectors related to Outside In Filters, a different vulnerability than CVE-2013-0393. NOTE: the previous information was obtained from the January 2013 CPU. Oracle has not commented on claims from an independent researcher that this is a heap-based buffer overflow in the Paradox database stream filter (vspdx.dll) that can be triggered using a table header with a crafted "number of fields" value.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2013-0418	Version:	4
Platform(s):	Microsoft Windows Server 2008 Microsoft Windows Server 2003 Microsoft Windows Server 2008 R2	Product(s):	Microsoft Exchange Server 2007 Microsoft Exchange Server 2010
Definition Synopsis:
exchange server 2007/version Microsoft Exchange Server 2007 SP3 is installed AND Check if the version ExSetup.exe is less than 8.3.298.3 OR exchange server 2010/version Microsoft Exchange Server 2010 SP2 is installed AND Check if the version ExSetup.exe is less than 14.2.342.2

Definition Id: oval:org.mitre.oval:def:15784

Oval ID:	oval:org.mitre.oval:def:15784
Title:	Microsoft Exchange Server 2007 SP3 is installed
Description:	Microsoft Exchange Server 2007 SP3 is installed.
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:microsoft:exchange_server:2007:sp3	Version:	7
Platform(s):	Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2	Product(s):	Microsoft Exchange Server 2007
Definition Synopsis:
Exchange Server 2007 is installed. AND Check if Exchange Server 2007 SP3 is installed
Referenced By:
oval:org.mitre.oval:def:16251

Definition Id: oval:org.mitre.oval:def:15546

Oval ID:	oval:org.mitre.oval:def:15546
Title:	Microsoft Exchange Server 2010 SP2 is installed
Description:	Microsoft Exchange Server 2010 SP2 is installed
Family:	windows	Class:	inventory
Reference(s):	cpe:/a:microsoft:exchange:2010:sp2	Version:	3
Platform(s):	Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2	Product(s):	Microsoft Exchange Server 2010
Definition Synopsis:
Microsoft Exchange Server 2010 is installed AND Microsoft Exchange Server 2010 SP2 is installed
Referenced By:
oval:org.mitre.oval:def:16251