CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2009-3411
https://notcve.org/view.php?id=CVE-2009-3411
13 Jan 2010 — Unspecified vulnerability in the Oracle Data Pump component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity via unknown vectors. vulnerabilidad inespecífica en el componente Oracle Data Pump en Oracle Database v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados influir en la confidencialidad y la integridad a través de vectores desconocidos • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3412
https://notcve.org/view.php?id=CVE-2009-3412
13 Jan 2010 — Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown vectors. Vulnerabilidad sin especificar en el componente Unzip en Oracle Database v9.2.0.8, v9.2.0.8DV, y v10.1.0.5; y Oracle Application Server v10.1.2.3; permite a usuarios locales afectar a la confidencialidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3413
https://notcve.org/view.php?id=CVE-2009-3413
13 Jan 2010 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3414. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5 y 10.2.0.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores descon... • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 19%CPEs: 5EXPL: 1CVE-2010-0071 – Oracle Database - Remote Listener Memory Corruption
https://notcve.org/view.php?id=CVE-2010-0071
13 Jan 2010 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. vulnerabilidad inespecífica en el componente Listener en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a atacantes remotos influir en la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33506 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1965
https://notcve.org/view.php?id=CVE-2009-1965
22 Oct 2009 — Unspecified vulnerability in the Net Foundation Layer component in Oracle Database 9.2.0.8 and 10.1.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Foundation Layer en Oracle Database v9.2.0.8 y v10.1.0.5 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1972
https://notcve.org/view.php?id=CVE-2009-1972
22 Oct 2009 — Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL and DBMS_SQL. Vulnerabilidad no especificada en el componente Auditing de Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 y v11.1.0.7 , permite a usuarios autenticados en remoto comprometer la integridad. Está relacionado con DBMS_SYS_SQL y DBMS_SQL. • http://secunia.com/advisories/37027 •
CVSS: 10.0EPSS: 2%CPEs: 4EXPL: 0CVE-2009-1985
https://notcve.org/view.php?id=CVE-2009-1985
22 Oct 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad sin especificar en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5 y v10.2.0.4, permite a atacantes remotos comprometer la confidencialidad, disponibilidad e integridad a través de vectores desconocidos. • http://osvdb.org/59111 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1991
https://notcve.org/view.php?id=CVE-2009-1991
22 Oct 2009 — Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure. Vulnerabilidad no ... • http://osvdb.org/59113 •
CVSS: 10.0EPSS: 2%CPEs: 4EXPL: 0CVE-2009-1992
https://notcve.org/view.php?id=CVE-2009-1992
22 Oct 2009 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Core RDBMS en Oracle Database v9.2.0.8, v10.1.0.5 y v10.2.0.4, permite a atacantes remotos comprometer la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 9.6EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1993
https://notcve.org/view.php?id=CVE-2009-1993
22 Oct 2009 — Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE. Vulnerabilidad sin especificar en el componente Application Express en Oracle Database v3.0.1, permite a usuarios autenticados remotamente comprometer la confidencialidad e integridad. Relacionado con el FLOWS_030000.WWV_EXECUTE_IMMEDIATE. • http://secunia.com/advisories/37027 •