CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2010-0854
https://notcve.org/view.php?id=CVE-2010-0854
13 Apr 2010 — Unspecified vulnerability in the Audit component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to "SELECT, INSERT or DELETE on tables subject to auditing." Una vulnerabilidad no especificada en el componente de auditoría de la Base de Datos de Oracle v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 y v11.1.0.7 permite a los usuarios remotos autenticados afectar a la integridad de los datos, lanzando comandos "SELECT, INSERT o... • http://secunia.com/advisories/39438 •
CVSS: 9.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3415
https://notcve.org/view.php?id=CVE-2009-3415
13 Jan 2010 — Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. vulnerabilidad inespecífica en el componente Oracle OLAP en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.3 permite a usuarios remotos autenticados influir en la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2009-3411
https://notcve.org/view.php?id=CVE-2009-3411
13 Jan 2010 — Unspecified vulnerability in the Oracle Data Pump component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity via unknown vectors. vulnerabilidad inespecífica en el componente Oracle Data Pump en Oracle Database v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados influir en la confidencialidad y la integridad a través de vectores desconocidos • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3413
https://notcve.org/view.php?id=CVE-2009-3413
13 Jan 2010 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3414. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5 y 10.2.0.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores descon... • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 8.1EPSS: 0%CPEs: 6EXPL: 0CVE-2009-3410
https://notcve.org/view.php?id=CVE-2009-3410
13 Jan 2010 — Unspecified vulnerability in the RDBMS component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity via unknown vectors. vulnerabilidad inespecífica en el componente RDBMS en Oracle Database v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados influir en la confidencialidad y la integridad a través de vectores desconocidos. • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0CVE-2009-3414
https://notcve.org/view.php?id=CVE-2009-3414
13 Jan 2010 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3413. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5 y 10.2.0.3 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores descon... • http://www.oracle.com/technetwork/topics/security/cpujan2010-084891.html •
CVSS: 10.0EPSS: 19%CPEs: 5EXPL: 1CVE-2010-0071 – Oracle Database - Remote Listener Memory Corruption
https://notcve.org/view.php?id=CVE-2010-0071
13 Jan 2010 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. vulnerabilidad inespecífica en el componente Listener en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a atacantes remotos influir en la confidencialidad, la integridad y la disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33506 •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1971
https://notcve.org/view.php?id=CVE-2009-1971
22 Oct 2009 — Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.7 allows remote authenticated users to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Data Pump en Oracle Database v10.1.0.5, v10.2.0.3, y v11.1.0.7 permite a los usuarios remotos autenticados comprometer la integridad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1991
https://notcve.org/view.php?id=CVE-2009-1991
22 Oct 2009 — Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure. Vulnerabilidad no ... • http://osvdb.org/59113 •
CVSS: 10.0EPSS: 78%CPEs: 2EXPL: 2CVE-2009-1979 – Oracle 10gR2 - TNS Listener AUTH_SESSKEY Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-1979
22 Oct 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution. Vulnerabilidad no especificada en el componente... • https://www.exploit-db.com/exploits/16342 •