CVSS: 1.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3412
https://notcve.org/view.php?id=CVE-2009-3412
Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown vectors. Vulnerabilidad sin especificar en el componente Unzip en Oracle Database v9.2.0.8, v9.2.0.8DV, y v10.1.0.5; y Oracle Application Server v10.1.2.3; permite a usuarios locales afectar a la confidencialidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html http://www.securitytracker.com/id?1023438 http://www.us-cert.gov/cas/techalerts/TA10-012A.html •
CVSS: 3.2EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3413
https://notcve.org/view.php?id=CVE-2009-3413
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3414. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5 y 10.2.0.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2008-3976 y CVE-2009-3414. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html http://www.us-cert.gov/cas/techalerts/TA10-012A.html •
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3415
https://notcve.org/view.php?id=CVE-2009-3415
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. vulnerabilidad inespecífica en el componente Oracle OLAP en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.3 permite a usuarios remotos autenticados influir en la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html http://www.us-cert.gov/cas/techalerts/TA10-012A.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1994
https://notcve.org/view.php?id=CVE-2009-1994
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to MDSYS.PRVT_CMT_CBK. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database v10.1.0.5 permite a usuarios autentificados remotamente afecta la confidencialidad, integridad y disponibilidad, relacionado con MDSYS.PRVT_CMT_CBK. • http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36744 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •
CVSS: 10.0EPSS: 95%CPEs: 2EXPL: 2CVE-2009-1979 – Oracle 10gR2 - TNS Listener AUTH_SESSKEY Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-1979
Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution. Vulnerabilidad no especificada en el componente Network Authentication en Oracle Database v10.1.0.5 y v10.2.0.4 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores no conocidos. • https://www.exploit-db.com/exploits/16342 https://www.exploit-db.com/exploits/9905 http://blogs.conus.info/node/28 http://osvdb.org/59110 http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/archive/1/507598/100/0/threaded http://www.securityfocus.com/bid/36747 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •