CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2009-0992 – DBMS_AQIN SQL Injection
https://notcve.org/view.php?id=CVE-2009-0992
15 Apr 2009 — Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_AQIN. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue is SQL injection in the DEQ_EXEJOB procedure. Vulnerabilidad no especificada en el componente Advanced Queuing en Oracle Database v10.1.0.5, v10.2.0.4, y v11.1.0.7... • http://secunia.com/advisories/34693 •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2008-3973
https://notcve.org/view.php?id=CVE-2008-3973
14 Jan 2009 — Unspecified vulnerability in the SQL*Plus Windows GUI component in Oracle Database allows local users to affect confidentiality via unknown vectors. Vulnerabilidad sin especificar en el componente SQL*Plus Windows GUI en Oracle Database, permite a usuarios locales comprometer la confidencialidad a través de vectores desconocidos. • http://osvdb.org/51351 •
CVSS: 9.8EPSS: 1%CPEs: 4EXPL: 0CVE-2008-1820
https://notcve.org/view.php?id=CVE-2008-1820
16 Apr 2008 — Unspecified vulnerability in the Data Pump component in Oracle Database 9.2.0.8, 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote attack vectors related to KUPF$FILE_INT, aka DB11. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on reliable researcher claims that DB11 is for a buffer overflow in the SYS.KUPF$FILE_INT.GET_FULL_FILENAME procedure. Una vulnerabilidad no especificada en el componente Data Pump en Oracle Database versiones 9.2.0.8, 10.1... • http://secunia.com/advisories/29829 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2008-1815
https://notcve.org/view.php?id=CVE-2008-1815
16 Apr 2008 — Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to DBMS_CDC_UTILITY, aka DB02. NOTE: the previous information was obtained from the April 2008 CPU. Oracle has not commented on reliable researcher claims that DB02 is for SQL injection in LOCK_CHANGE_SET. Una vulnerabilidad no especificada en el componente Change Data Capture de Oracle Database versiones 10.1.0.5, 10.2.0.3 y 11... • http://secunia.com/advisories/29829 •