CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1971
https://notcve.org/view.php?id=CVE-2009-1971
22 Oct 2009 — Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.7 allows remote authenticated users to affect integrity via unknown vectors. Vulnerabilidad no especificada en el componente Data Pump en Oracle Database v10.1.0.5, v10.2.0.3, y v11.1.0.7 permite a los usuarios remotos autenticados comprometer la integridad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1972
https://notcve.org/view.php?id=CVE-2009-1972
22 Oct 2009 — Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL and DBMS_SQL. Vulnerabilidad no especificada en el componente Auditing de Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 y v11.1.0.7 , permite a usuarios autenticados en remoto comprometer la integridad. Está relacionado con DBMS_SYS_SQL y DBMS_SQL. • http://secunia.com/advisories/37027 •
CVSS: 10.0EPSS: 78%CPEs: 2EXPL: 2CVE-2009-1979 – Oracle 10gR2 - TNS Listener AUTH_SESSKEY Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-1979
22 Oct 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution. Vulnerabilidad no especificada en el componente... • https://www.exploit-db.com/exploits/16342 •
CVSS: 10.0EPSS: 2%CPEs: 4EXPL: 0CVE-2009-1985
https://notcve.org/view.php?id=CVE-2009-1985
22 Oct 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad sin especificar en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5 y v10.2.0.4, permite a atacantes remotos comprometer la confidencialidad, disponibilidad e integridad a través de vectores desconocidos. • http://osvdb.org/59111 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1991
https://notcve.org/view.php?id=CVE-2009-1991
22 Oct 2009 — Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure. Vulnerabilidad no ... • http://osvdb.org/59113 •
CVSS: 10.0EPSS: 2%CPEs: 4EXPL: 0CVE-2009-1992
https://notcve.org/view.php?id=CVE-2009-1992
22 Oct 2009 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Core RDBMS en Oracle Database v9.2.0.8, v10.1.0.5 y v10.2.0.4, permite a atacantes remotos comprometer la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2009-1994
https://notcve.org/view.php?id=CVE-2009-1994
22 Oct 2009 — Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to MDSYS.PRVT_CMT_CBK. Vulnerabilidad no especificada en el componente Oracle Spatial en Oracle Database v10.1.0.5 permite a usuarios autentificados remotamente afecta la confidencialidad, integridad y disponibilidad, relacionado con MDSYS.PRVT_CMT_CBK. • http://secunia.com/advisories/37027 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1969
https://notcve.org/view.php?id=CVE-2009-1969
14 Jul 2009 — Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente Auditing en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 que permite a los usuarios remotos autenticados afectar la confidencialidad a través de vectores desconocidos. • http://osvdb.org/55894 •
CVSS: 7.5EPSS: 10%CPEs: 5EXPL: 1CVE-2009-1970 – Oracle 9i/10g Database - TNS Command Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-1970
14 Jul 2009 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-0991. Vulnerabilidad no especificada en el componente Listener en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4 y 11.1.0.7 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-0991. • https://www.exploit-db.com/exploits/33083 •
CVSS: 9.6EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1973
https://notcve.org/view.php?id=CVE-2009-1973
14 Jul 2009 — Unspecified vulnerability in the Virtual Private Database component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to VPD policies. Vulnerabilidad no especificada en el componente Virtual Private Database en Oracle Database v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a los usuario remotos autenticados afectar la confidencialidad y integridad en relación a las políticas VPD. • http://osvdb.org/55890 •