CVSS: 4.9EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1998
https://notcve.org/view.php?id=CVE-2009-1998
Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad no especificada en el componente Oracle Communications Order y Service Management de Oracle Industry Applications v2.8.0, v6.2.0, v6.3.0 y v6.3.1, permite a usuarios autenticados en remoto comprometer la confidencialidad e integridad a través de vectores desconocidos. • http://osvdb.org/59114 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36775 http://www.securitytracker.com/id?1023060 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2008-2610
https://notcve.org/view.php?id=CVE-2008-2610
Unspecified vulnerability in the Oracle Applications Technology Stack component in Oracle E-Business Suite 12.0.4 has unknown impact and remote authenticated attack vectors. Vulnerabilidad no especificada en el componente Oracle Applications Technology Stack de Oracle E-Business Suite 12.0.4 tiene un impacto desconocido y vectores de ataque remoto autenticados. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 http://secunia.com/advisories/31087 http://secunia.com/advisories/31113 http://www.oracle.com/technetwork/topics/security/cpujul2008-090335.html http://www.securitytracker.com/id?1020495 http://www.vupen.com/english/advisories/2008/2109/references http://www.vupen.com/english/advisories/2008/2115 •
CVSS: 10.0EPSS: 0%CPEs: 10EXPL: 0CVE-2004-0543
https://notcve.org/view.php?id=CVE-2004-0543
Multiple SQL injection vulnerabilities in Oracle Applications 11.0 and Oracle E-Business Suite 11.5.1 through 11.5.8 allow remote attackers to execute arbitrary SQL procedures and queries. Múltiples vulnerabilidades de inyección de SQL en Oracle Applications 11.0 y Oracle E-Business Suite 11.5.1 a 11.5.8 permite a atacantes remotos ejecutar procedimientos y consultas SQL de su elección. • http://archives.neohapsis.com/archives/vulnwatch/2004-q2/0032.html http://marc.info/?l=bugtraq&m=108638417302229&w=2 http://otn.oracle.com/deploy/security/pdf/2004alert67.pdf http://www.ciac.org/ciac/bulletins/o-153.shtml http://www.integrigy.com/alerts/OraAppsSQLInjection.htm http://www.kb.cert.org/vuls/id/961579 http://www.securityfocus.com/bid/10465 http://www.us-cert.gov/cas/techalerts/TA04-160A.html https://exchange.xforce.ibmcloud.com/vulnerabilities/16324 •
CVSS: 5.0EPSS: 0%CPEs: 10EXPL: 0CVE-2003-0633
https://notcve.org/view.php?id=CVE-2003-0633
Multiple vulnerabilities in aoljtest.jsp of Oracle Applications AOL/J Setup Test Suite in Oracle E-Business Suite 11.5.1 through 11.5.8 allow a remote attacker to obtain sensitive information without authentication, such as the GUEST user password and the application server security key. Múltiples vulnerabilidades en aoljtest.jsp de Oracle Applications AOL/J Setup Test Suite en Oracle E-Business Suite 11.5.1 a 11.5.8 permite a atacantes remotos obtener información sensible sin autenticarse, como la contraseña del usuario GUEST y la clave de seguridad del servidor de aplicaciones. • http://marc.info/?l=bugtraq&m=105906689120237&w=2 http://otn.oracle.com/deploy/security/pdf/2003alert55.pdf http://www.securityfocus.com/bid/8268 •
CVSS: 7.5EPSS: 1%CPEs: 10EXPL: 0CVE-2003-0632
https://notcve.org/view.php?id=CVE-2003-0632
Buffer overflow in the Oracle Applications Web Report Review (FNDWRR) CGI program (FNDWRR.exe) of Oracle E-Business Suite 11.0 and 11.5.1 through 11.5.8 may allow remote attackers to execute arbitrary code via a long URL. Desbordamiento de búfer en el programa CGI FNDWRR.exe de Oracle Applications Web Report Review (FNDWRR) de Oracle E-Business Suite 11.0 and 11.5.1 a 11.5.8 puede permitir a atacantes remotos ejecutar código arbitrario mediante una URL larga. • http://marc.info/?l=bugtraq&m=105906721920776&w=2 http://otn.oracle.com/deploy/security/pdf/2003alert56.pdf •