CVE-2005-1495
https://notcve.org/view.php?id=CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for attackers to escape detection. • http://marc.info/?l=bugtraq&m=111531683824209&w=2 http://www.kb.cert.org/vuls/id/777773 http://www.red-database-security.com/advisory/oracle-fine-grained-auditing-issue.html http://www.securityfocus.com/bid/16258 https://exchange.xforce.ibmcloud.com/vulnerabilities/20407 •
CVE-2005-1496
https://notcve.org/view.php?id=CVE-2005-1496
The DBMS_Scheduler in Oracle 10g allows remote attackers with CREATE JOB privileges to gain additional privileges by changing SESSION_USER to the SYS user. • http://marc.info/?l=bugtraq&m=111531740305049&w=2 http://www.red-database-security.com/exploits/oracle_exploit_dbms_scheduler_select_user.html http://www.securityfocus.com/bid/13509 https://exchange.xforce.ibmcloud.com/vulnerabilities/20410 •