CVSS: 9.1EPSS: 0%CPEs: 4EXPL: 0CVE-2008-2625
https://notcve.org/view.php?id=CVE-2008-2625
14 Oct 2008 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.2 allows remote attackers to affect confidentiality and integrity via unknown vectors. NOTE: the previous information was obtained from the Oracle October 2008 CPU. Oracle has not commented on reliable researcher claims that this issue involves an authentication bypass by establishing a TNS connection and impersonating a user session via a crafted authentication message during proxy authenticati... • http://secunia.com/advisories/32291 •
CVSS: 8.1EPSS: 63%CPEs: 5EXPL: 2CVE-2008-3983 – Oracle 10g - SYS.LT.MERGEWORKSPACE SQL Injection
https://notcve.org/view.php?id=CVE-2008-3983
14 Oct 2008 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-3982 and CVE-2008-3984. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3 y 11.1.0.6 permite a usuarios remotos autenticados afectar la confidencialidad y la ... • https://packetstorm.news/files/id/180721 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3989
https://notcve.org/view.php?id=CVE-2008-3989
14 Oct 2008 — Unspecified vulnerability in the Oracle Data Mining component in Oracle Database 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability, related to DMSYS.ODM_MODEL_UTIL. Vulnerabilidad sin especificar en el componente Oracle Data Mining 10.2.0.3 permite a un usuario remoto autentificado comprometer la confidencialidad, integridad y disponibilidad de los datos; está relacionado con DMSYS.ODM_MODEL_UTIL. • http://secunia.com/advisories/32291 •
CVSS: 8.1EPSS: 0%CPEs: 1EXPL: 0CVE-2008-3992
https://notcve.org/view.php?id=CVE-2008-3992
14 Oct 2008 — Unspecified vulnerability in the Oracle Data Mining component in Oracle Database 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to DMSYS.DBMS_DM_EXP_INTERNAL. Vulnerabilidad no especificada en el componente Oracle Data Mining de Oracle Database 10.2.0.4 permite a usuarios remotamente autentificados afectar a la confidencialidad e integridad, relacionada con DMSYS.DBMS_DM_EXP_INTERNAL. • http://secunia.com/advisories/32291 •
CVSS: 8.1EPSS: 63%CPEs: 5EXPL: 2CVE-2008-3984 – Oracle 10g - SYS.LT.REMOVEWORKSPACE SQL Injection
https://notcve.org/view.php?id=CVE-2008-3984
14 Oct 2008 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-3982 and CVE-2008-3983. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3 y 11.1.0.6 permite a usuarios remotos autenticados afectar la confidencialidad y la ... • https://packetstorm.news/files/id/180727 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2008-3991
https://notcve.org/view.php?id=CVE-2008-3991
14 Oct 2008 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.08, 9.2.0.8DV, and 10.1.0.5 allows remote authenticated users to affect availability, related to OLAPSYS.CWM2_OLAP_AW_AWUTIL, a different vulnerability than CVE-2008-3990. Vulnerabilidad no especificada en el componente Oracle OLAP en Oracle Database 9.2.08, 9.2.0.8DV y 10.1.0.5 permite a usuarios remotos autenticados afectar la disponibilidad, relacionado con OLAPSYS.CWM2_OLAP_AW_AWUTIL, una vulnerabilidad diferente a CVE-2008-39... • http://secunia.com/advisories/32291 •
CVSS: 8.1EPSS: 42%CPEs: 3EXPL: 1CVE-2008-3995 – Oracle DB SQL Injection Via SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE
https://notcve.org/view.php?id=CVE-2008-3995
14 Oct 2008 — Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_CDC_PUBLISH. Una vulnerabilidad no especificada en el componente Change Data Capture de la base de datos Oracle 10.1.0.5, 10.2.0.4 y 11.1.0.6, permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad, en relación con DBMS_CDC_PUBLISH. • https://packetstorm.news/files/id/180719 •
CVSS: 8.1EPSS: 39%CPEs: 3EXPL: 1CVE-2008-3996 – Oracle DB SQL Injection Via SYS.DBMS_CDC_IPUBLISH.ALTER_HOTLOG_INTERNAL_CSOURCE
https://notcve.org/view.php?id=CVE-2008-3996
14 Oct 2008 — Unspecified vulnerability in the Change Data Capture component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_CDC_IPUBLISH. Vulnerabilidad no especificada en el componente Change Data Capture de Oracle Database 10.1.0.5, 10.2.0.4 y 11.1.0.6 permite a usuarios remotamente autentificados afectar a la confidencialidad e integridad, relacionada con SYS.DBMS_CDC_IPUBLISH. • https://packetstorm.news/files/id/180733 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2008-2624
https://notcve.org/view.php?id=CVE-2008-2624
14 Oct 2008 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Oracle OLAP de Oracle Database 10.1.0.5 permite a usuarios autentificados remotamente afectar la confidencialidad, integridad y disponibilidad mediante vectores desconocidos. • http://secunia.com/advisories/32291 •
CVSS: 9.6EPSS: 0%CPEs: 2EXPL: 0CVE-2008-3980
https://notcve.org/view.php?id=CVE-2008-3980
14 Oct 2008 — Unspecified vulnerability in the Upgrade component in Oracle Database 10.1.0.5 and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en el componente Upgrade de Oracle Database 10.1.0.5 y 10.2.0.3 permite a usuarios autentificados remotamente afectar a la confidencialidad e integridad mediante vectores desconocidos. • http://secunia.com/advisories/32291 •