CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2009-0992
https://notcve.org/view.php?id=CVE-2009-0992
15 Apr 2009 — Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_AQIN. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is SQL injection in the DEQ_EXEJOB procedure. Vulnerabilidad no especificada en el componente Advanced Queuing en Oracle Database v10.1.0.5, v10.2.0.4, y v11.1.0.7... • http://secunia.com/advisories/34693 •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2008-5436
https://notcve.org/view.php?id=CVE-2008-5436
14 Jan 2009 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect integrity and availability via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle OLAP en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5 y 10.2.0.4, permite a usuarios autenticados comprometer la integridad y disponibilidad a través de vectores no especificados. • http://osvdb.org/51346 •
CVSS: 8.1EPSS: 0%CPEs: 5EXPL: 0CVE-2008-5437
https://notcve.org/view.php?id=CVE-2008-5437
14 Jan 2009 — Unspecified vulnerability in the Job Queue component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_IJOB. Vulnerabilidad no especificada en el componente Job Queue de Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4 y 11.1.0.6, permite a usuarios autenticados en remoto comprometer la confidencialidad e integridad; relacionada con DBMS_IJOB. • http://osvdb.org/51352 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2008-5439
https://notcve.org/view.php?id=CVE-2008-5439
14 Jan 2009 — Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad sin especificar en el componente SQL*Plus Windows GUI en Oracle Database 10.2.0.4, permite a usuarios autenticados remotamente comprometer la confidencialidad a través de vectores desconocidos. • http://osvdb.org/51350 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2008-3973
https://notcve.org/view.php?id=CVE-2008-3973
14 Jan 2009 — Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local users to affect confidentiality via unknown vectors. Vulnerabilidad sin especificar en el componente SQL*Plus Windows GUI en Oracle Database, permite a usuarios locales comprometer la confidencialidad a través de vectores desconocidos. • http://osvdb.org/51351 •
CVSS: 8.5EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3978
https://notcve.org/view.php?id=CVE-2008-3978
14 Jan 2009 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad sin especificar en el componente Oracle Spatial en Oracle Database 10.1.0.5, permite a usuarios autenticados remotamente comprometer la confidencialidad e integridad a través de vectores desconocidos. • http://osvdb.org/51353 •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-3997
https://notcve.org/view.php?id=CVE-2008-3997
14 Jan 2009 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect availability, related to SYS.DBMS_XSOQ_ODBO. Vulnerabilidad sin especificar en el componente Oracle OLAP en Oracle Database 10.1.0.5 y 10.2.0.3, permite a usuarios autenticados remotamente comprometer la disponibilidad. Relacionado con SYS.DBMS_XSOQ_ODBO. • http://secunia.com/advisories/33525 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2008-3999
https://notcve.org/view.php?id=CVE-2008-3999
14 Jan 2009 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to SYS.OLAPIMPL_T. Vulnerabilidad sin especificar en el componente Oracle OLAP en Oracle Database v9.2.0.8, v9.2.0.8DV, y v10.1.0.5 permite a usuarios autenticados remotamente afectar a la disponibilidad, relacionado con SYS.OLAPIMPL_T. • http://osvdb.org/51349 •
CVSS: 9.6EPSS: 0%CPEs: 1EXPL: 0CVE-2008-4015
https://notcve.org/view.php?id=CVE-2008-4015
14 Jan 2009 — Unspecified vulnerability in the Oracle Streams component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_STREAMS_AUTH. Vulnerabilidad no especificada en el componente Oracle Streams en Oracle Database 10.1.0.5 permite a los usuario autenticados remotamente afectar la confidencialidad e integridad, en relación a SYS.DBMS_STREAMS_AUTH. • http://osvdb.org/51345 •
CVSS: 8.8EPSS: 54%CPEs: 2EXPL: 2CVE-2008-3979 – Oracle 10g - MDSYS.SDO_TOPO_DROP_FTBL SQL Injection
https://notcve.org/view.php?id=CVE-2008-3979
14 Jan 2009 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the January 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is a SQL injection vulnerability that allows remote authenticated users to gain MDSYS privileges via the MDSYS.SDO_TOPO_DROP_FTBL trigger. Una vulnerabilidad no especificada en... • https://packetstorm.news/files/id/180734 •