CVSS: 4.3EPSS: 0%CPEs: 3EXPL: 0CVE-2010-2407
https://notcve.org/view.php?id=CVE-2010-2407
Unspecified vulnerability in the XDK component in Oracle Database Server 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente XDK de Oracle Database Server v10.1.0.5, v10.2.0.4 y v11.1.0.7 permite a atacantes remotos comprometer la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html http://www.us-cert.gov/cas/techalerts/TA10-287A.html •
CVSS: 1.0EPSS: 0%CPEs: 7EXPL: 0CVE-2010-2389
https://notcve.org/view.php?id=CVE-2010-2389
Unspecified vulnerability in the Perl component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5; and Fusion Middleware 11.1.1.1.0 and 11.1.1.2.0; allows local users to affect integrity via unknown vectors related to Local Logon. Vulnerabilidad no especificada en el componente Perl de Oracle Database Server v11.2.0.1, v11.1.0.7, v10.2.0.3, v10.2.0.4 y v10.1.0.5; y Fusion Middleware v11.1.1.1.0 y v11.1.1.2.0; permite a usuarios locales comprometer la integridad mediante vectores desconocidos relacionados con Local Logon. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html http://www.us-cert.gov/cas/techalerts/TA10-287A.html •
CVSS: 4.6EPSS: 0%CPEs: 5EXPL: 0CVE-2010-2411
https://notcve.org/view.php?id=CVE-2010-2411
Unspecified vulnerability in the Job Queue component in Oracle Database Server 11.2.0.1, 11.1.0.7, 10.2.0.3, 10.2.0.4, and 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYS.DBMS_IJOB. Vulnerabilidad no especificada en el componente Job Queue en Oracle Database Server v11.2.0.1, v11.1.0.7, v10.2.0.3, v10.2.0.4, y v10.1.0.5 permite a usuarios remotos autenticados afectar a la confidencialidad, integridad y disponibilidad, relacionados con SYS.DBMS_IJOB. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html http://www.us-cert.gov/cas/techalerts/TA10-287A.html •
CVSS: 9.0EPSS: 9%CPEs: 4EXPL: 0CVE-2010-2419 – Oracle Database Java Stored Procedure Race Condition Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-2419
Unspecified vulnerability in the Java Virtual Machine component in Oracle Database Server 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Java Virtual Machine en Oracle Database Server v10.1.0.5, v10.2.0.4, v11.1.0.7, v11.2.0.1 y permite a usuarios remotos autenticados afectar a la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. This vulnerability allows remote attackers to break out of the Java Sandbox implemented by Oracle's relational database. Authentication is required in that a user must be able to create a Java stored procedure to trigger the issue. The specific flaw exists within Oracle's custom SecurityManager implementation. Due to the implementation's dependence on a flag of a particular object to determine success or failure of a privileged call, a race condition exists which will allow one to execute Java code bypassing the sandbox. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html http://www.us-cert.gov/cas/techalerts/TA10-287A.html •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2010-0911
https://notcve.org/view.php?id=CVE-2010-0911
Unspecified vulnerability in the Listener component in Oracle Database Server 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect availability via unknown vectors. Vulnerabilidad no especificada en el componente Listener de Oracle Database Server v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, v11.1.0.7, y v11.2.0.1, permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpuoct2010-175626.html •