CVSS: 9.8EPSS: 5%CPEs: 4EXPL: 0CVE-2006-5339
https://notcve.org/view.php?id=CVE-2006-5339
18 Oct 2006 — Unspecified vulnerability in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB11. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB11 is related to "length checking" in the RELATE function before MD2.RELATE is called. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, y 10.1.0.4 t... • http://secunia.com/advisories/22396 •
CVSS: 9.8EPSS: 10%CPEs: 5EXPL: 0CVE-2006-5340
https://notcve.org/view.php?id=CVE-2006-5340
18 Oct 2006 — Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.8, 10.1.0.5, and 10.2.0.2 have unknown impact and remote authenticated attack vectors related to (1) mdsys.sdo_lrs, aka Vuln# DB13, and (2) Vuln# DB17. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB13 is related to bypassing input validation for SQL injection related to convert_to_lrs_layer and dbms_assert, and DB17 is related to SQL injection in the trigger ... • http://archive.cert.uni-stuttgart.de/archive/bugtraq/2006/07/msg00489.html •
CVSS: 8.8EPSS: 2%CPEs: 3EXPL: 0CVE-2006-5342
https://notcve.org/view.php?id=CVE-2006-5342
18 Oct 2006 — Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.3 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_tune, aka Vuln# DB18. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB18 might be related to SQL injection in the EXTENT_OF function. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.0.1.5, 9.2.0.6, y 10.1.0.3 tiene impacto y vectores de ataque remotos... • http://secunia.com/advisories/22396 •
CVSS: 9.8EPSS: 13%CPEs: 4EXPL: 0CVE-2006-5344
https://notcve.org/view.php?id=CVE-2006-5344
18 Oct 2006 — Multiple unspecified vulnerabilities in Oracle Spatial component in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 have unknown impact and remote authenticated attack vectors related to (1) mdsys.sdo_3gl, aka Vuln# DB20, and (2) mdsys.sdo_cs, aka DB21. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB20 is a buffer overflow in GEOM_OPERATION, and DB21 is related to a buffer overflow and SQL injection in TRANSFORM_LAYER. Múltiples vulnerabilidades no especific... • http://secunia.com/advisories/22396 •
CVSS: 9.0EPSS: 5%CPEs: 3EXPL: 0CVE-2006-5345
https://notcve.org/view.php?id=CVE-2006-5345
18 Oct 2006 — Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_geom, aka Vuln# DB22. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB22 is related to "length checking" in the RELATE function before MD2.RELATE is called. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database 9.0.1.5, 9.2.0.7, y 10.1.0.4 tiene impacto y vec... • http://secunia.com/advisories/22396 •
CVSS: 9.8EPSS: 3%CPEs: 2EXPL: 0CVE-2006-3699
https://notcve.org/view.php?id=CVE-2006-3699
19 Jul 2006 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5 and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB02. Vulnerabilidad no especificada en el componente Core RDBMS en Oracle Database 9.0.1.5 y 9.2.0.6 tiene un impacto desconocido y vectores de ataque, también conocido como Oracle Vuln# DB02. • http://secunia.com/advisories/21111 •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2006-3701
https://notcve.org/view.php?id=CVE-2006-3701
19 Jul 2006 — Unspecified vulnerability in the Dictionary component in Oracle Database 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB05. Vulnerabilidad no especificada en el componente Dictionary en Oracle Database 8.1.7.4, 9.0.1.5, y 9.2.0.6 tiene un impacto desconocido y vectores de ataque, también conocido como Oracle Vuln# DB05. • http://secunia.com/advisories/21111 •
CVSS: 10.0EPSS: 4%CPEs: 4EXPL: 0CVE-2006-3702
https://notcve.org/view.php?id=CVE-2006-3702
19 Jul 2006 — Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and 10.2.0.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB06 in Export; (2) DB08, (3) DB09, (4) DB10, (5) DB11, (6) DB12, (7) DB13, (8) DB14, and (9) DBC01 for OCI; (10) DB16 for Query Rewrite/Summary Mgmt; (11) DB17, (12) DB18, (13) DB19, (14) DBC02, (15) DBC03, and (16) DBC04 for RPC; and (17) DB20 for Semantic Analysis. NOTE: as of 20060719, Oracle has not disputed third party claims that DB06 i... • http://secunia.com/advisories/21111 •
CVSS: 9.8EPSS: 2%CPEs: 3EXPL: 0CVE-2006-3703
https://notcve.org/view.php?id=CVE-2006-3703
19 Jul 2006 — Unspecified vulnerability in InterMedia for Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.4 has unknown impact and attack vectors, aka oracle Vuln# DB07. Vulnerabilidad no especificada en InterMedia para Oracle Database 9.0.1.5, 9.2.0.6, y 10.1.0.4 tiene un impacto desconocido y vectores de ataque, también conocido como oracle Vuln# DB07. • http://secunia.com/advisories/21111 •
CVSS: 9.8EPSS: 5%CPEs: 4EXPL: 1CVE-2006-1866
https://notcve.org/view.php?id=CVE-2006-1866
20 Apr 2006 — Multiple unspecified vulnerabilities in Oracle Database Server 8.1.7.4, 9.0.1.5, 9.2.0.7, 10.1.0.5, and other versions have unknown impact and attack vectors in the (1) Advanced Replication component, as identified by Vuln# DB01, and (2) Oracle Spatial component, as identified by Vuln# DB10. NOTE: details are unavailable from Oracle, but as of 20060421, they have not publicly disputed a claim by a reliable independent researcher that states that DB01 is an unknown issue in the DBMS_REPUTIL package, and DB10... • http://secunia.com/advisories/19712 •