1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Oracle WebCenter CVE-2013-1559

Web Attack: Oracle WebCenter CVE-2013-1559

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.


This signature detects an attempt to exploit a remote code execution vulnerability in Oracle WebCenter Content ActiveX Control which could result a remote code execution or cause a denial-of-service.

Additional Information

Oracle WebCenter Content is prone to a remote code-execution vulnerability. Specifically, the issue exists in the 'CheckOutAndOpen.dll' ActiveX control's 'coao' and 'openWebdav' methods.

Successfully exploiting this issue allows remote attackers to execute arbitrary code in the context of the application (typically Internet Explorer) using the ActiveX control. Failed exploit attempts will likely result in denial-of-service conditions.


  • This vulnerability affects the following supported versions:
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube