CVSS: 8.1EPSS: 0%CPEs: 4EXPL: 0CVE-2009-0987
https://notcve.org/view.php?id=CVE-2009-0987
14 Jul 2009 — Unspecified vulnerability in the Upgrade component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad inespecífica en el componente Upgrade en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.3 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad a través de vectores desconocidos. • http://osvdb.org/55889 •
CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1015
https://notcve.org/view.php?id=CVE-2009-1015
14 Jul 2009 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.05, and 10.2.04 allows remote authenticated users to affect integrity via unknown vectors. Vulnerabilidad inespecífica en el componente Core RDBMS en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.05, y v10.2.04 permite a usuarios remotos autenticados afectar a la integridad a través de vectores desconocidos. • http://osvdb.org/55893 •
CVSS: 9.8EPSS: 11%CPEs: 5EXPL: 1CVE-2009-1019 – Oracle 9i/10g Database - Remote Network Authentication
https://notcve.org/view.php?id=CVE-2009-1019
14 Jul 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad inespecífica en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a atacantes remotos afectar a al confidencialidad, integridad y la disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33081 •
CVSS: 9.0EPSS: 4%CPEs: 5EXPL: 1CVE-2009-1020 – Oracle 9i/10g Database - Network Foundation Remote Overflow
https://notcve.org/view.php?id=CVE-2009-1020
14 Jul 2009 — Unspecified vulnerability in the Network Foundation component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Network Foundation en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 permite a los usuario remotos autenticados afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33084 •
CVSS: 9.6EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1021
https://notcve.org/view.php?id=CVE-2009-1021
14 Jul 2009 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad inespecífica en el componente Advanced Replication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.3 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad a través de vectores desconocidos. • http://osvdb.org/55886 •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2009-0972
https://notcve.org/view.php?id=CVE-2009-0972
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database v11.1.0.6, v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados afectar a la confidencialidad, integridadad y ... • http://secunia.com/advisories/34693 •
CVSS: 8.8EPSS: 5%CPEs: 3EXPL: 1CVE-2008-6065 – Oracle Database Server 11.1 - 'CREATE ANY Directory' Privilege Escalation
https://notcve.org/view.php?id=CVE-2008-6065
05 Feb 2009 — Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the password directory, and then overwriting the password file through UTL_FILE operations, a related issue to CVE-2006-7141. Oracle Database Server v10.1, v10.2, y 11g concede permisos WRITE al directorio para rutas a... • https://www.exploit-db.com/exploits/32475 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2587
https://notcve.org/view.php?id=CVE-2008-2587
15 Jul 2008 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and local attack vectors. Vulnerabilidad no especificada en el componente Advanced Replication component de Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, y 10.2.0.3 tiene un impacto desconocido y vectores de ataque locales. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2008-2590
https://notcve.org/view.php?id=CVE-2008-2590
15 Jul 2008 — Unspecified vulnerability in the Instance Management component in Oracle Database 10.1.0.5 and Enterprise Manager 10.1.0.6 has unknown impact and remote authenticated attack vectors. Vulnerabilidad no especificada en el componente Instance Management de Oracle Database 10.1.0.5 y Enterprise Manager 10.1.0.6 tiene impacto desconocido y vectores de ataque autentificados remotamente. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2592
https://notcve.org/view.php?id=CVE-2008-2592
15 Jul 2008 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to SYS.DBMS_DEFER_SYS. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this is a SQL injection vulnerability in the DELETE_TRAN procedure. Una vulnerabilidad no especificada en el componente Replicación Adva... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •