CVSS: 10.0EPSS: 0%CPEs: 8EXPL: 0CVE-2005-3449
https://notcve.org/view.php?id=CVE-2005-3449
Multiple unspecified vulnerabilities in Oracle Application Server 9.0 up to 10.1.2.0 have unknown impact and attack vectors, as identified by Oracle Vuln# (1) AS02 in Containers for J2EE, (2) AS07 in Internet Directory, (3) AS09 in Report Server, and (4) AS11 in Web Cache. • http://secunia.com/advisories/17250 http://www.kb.cert.org/vuls/id/210524 http://www.kb.cert.org/vuls/id/376756 http://www.kb.cert.org/vuls/id/512716 http://www.oracle.com/technetwork/topics/security/cpuoct2005-090497.html http://www.securityfocus.com/bid/15134 http://www.us-cert.gov/cas/techalerts/TA05-292A.html •
CVSS: 7.5EPSS: 0%CPEs: 22EXPL: 1CVE-2005-1495
https://notcve.org/view.php?id=CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for attackers to escape detection. • http://marc.info/?l=bugtraq&m=111531683824209&w=2 http://www.kb.cert.org/vuls/id/777773 http://www.red-database-security.com/advisory/oracle-fine-grained-auditing-issue.html http://www.securityfocus.com/bid/16258 https://exchange.xforce.ibmcloud.com/vulnerabilities/20407 •
CVSS: 4.6EPSS: 42%CPEs: 12EXPL: 2CVE-2005-1496
https://notcve.org/view.php?id=CVE-2005-1496
The DBMS_Scheduler in Oracle 10g allows remote attackers with CREATE JOB privileges to gain additional privileges by changing SESSION_USER to the SYS user. • http://marc.info/?l=bugtraq&m=111531740305049&w=2 http://www.red-database-security.com/exploits/oracle_exploit_dbms_scheduler_select_user.html http://www.securityfocus.com/bid/13509 https://exchange.xforce.ibmcloud.com/vulnerabilities/20410 •
CVSS: 7.5EPSS: 94%CPEs: 4EXPL: 4CVE-2005-1383 – Oracle Application Server 9.0 - HTTP Service Mod_Access Restriction Bypass
https://notcve.org/view.php?id=CVE-2005-1383
The OHS component 1.0.2 through 10.x, when UseWebcacheIP is disabled, in Oracle Application Server allows remote attackers to bypass HTTP Server mod_access restrictions via a request to the webcache TCP port 7778. • https://www.exploit-db.com/exploits/25559 http://marc.info/?l=bugtraq&m=111472266123952&w=2 http://secunia.com/advisories/15143 http://www.osvdb.org/15908 http://www.red-database-security.com/advisory/oracle_webcache_bypass.html http://www.securityfocus.com/bid/13418 https://exchange.xforce.ibmcloud.com/vulnerabilities/20311 •