CVSS: 9.6EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1973
https://notcve.org/view.php?id=CVE-2009-1973
14 Jul 2009 — Unspecified vulnerability in the Virtual Private Database component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to VPD policies. Vulnerabilidad no especificada en el componente Virtual Private Database en Oracle Database v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a los usuario remotos autenticados afectar la confidencialidad y integridad en relación a las políticas VPD. • http://osvdb.org/55890 •
CVSS: 9.8EPSS: 11%CPEs: 5EXPL: 2CVE-2009-1019 – Oracle 9i/10g Database - Remote Network Authentication
https://notcve.org/view.php?id=CVE-2009-1019
14 Jul 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad inespecífica en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a atacantes remotos afectar a al confidencialidad, integridad y la disponibilidad a través de vectores desconocidos. • https://packetstorm.news/files/id/79616 •
CVSS: 9.0EPSS: 4%CPEs: 5EXPL: 2CVE-2009-1020 – Oracle 9i/10g Database - Network Foundation Remote Overflow
https://notcve.org/view.php?id=CVE-2009-1020
14 Jul 2009 — Unspecified vulnerability in the Network Foundation component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Network Foundation en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 permite a los usuario remotos autenticados afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • https://packetstorm.news/files/id/79617 •
CVSS: 7.5EPSS: 12%CPEs: 5EXPL: 2CVE-2009-1970 – Oracle 9i/10g Database - TNS Command Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-1970
14 Jul 2009 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-0991. Vulnerabilidad no especificada en el componente Listener en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4 y 11.1.0.7 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-0991. • https://packetstorm.news/files/id/79614 •
CVSS: 9.6EPSS: 0%CPEs: 4EXPL: 0CVE-2009-1021 – Oracle PL/SQL Injection
https://notcve.org/view.php?id=CVE-2009-1021
14 Jul 2009 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Vulnerabilidad inespecífica en el componente Advanced Replication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.3 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad a través de vectores desconocidos. Oracle suffers from a PL/SQL injection v... • http://osvdb.org/55886 •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2009-0972
https://notcve.org/view.php?id=CVE-2009-0972
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database v11.1.0.6, v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados afectar a la confidencialidad, integridadad y ... • http://secunia.com/advisories/34693 •
CVSS: 8.8EPSS: 5%CPEs: 3EXPL: 1CVE-2008-6065 – Oracle Database Server 11.1 - 'CREATE ANY Directory' Privilege Escalation
https://notcve.org/view.php?id=CVE-2008-6065
05 Feb 2009 — Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the password directory, and then overwriting the password file through UTL_FILE operations, a related issue to CVE-2006-7141. Oracle Database Server v10.1, v10.2, y 11g concede permisos WRITE al directorio para rutas a... • https://www.exploit-db.com/exploits/32475 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2592
https://notcve.org/view.php?id=CVE-2008-2592
15 Jul 2008 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to SYS.DBMS_DEFER_SYS. NOTE: the previous information was obtained from the Oracle July 2008 CPU. Oracle has not commented on reliable researcher claims that this is a SQL injection vulnerability in the DELETE_TRAN procedure. Una vulnerabilidad no especificada en el componente Replicación Adva... • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2008-2608
https://notcve.org/view.php?id=CVE-2008-2608
15 Jul 2008 — Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote authenticated attack vectors related to SYS.KUPF$FILE_INT. Vulnerabilidad sin especificar en el Componente Data Punmp en Oracle Database 10.1.0.5 y 10.2.0.3, posee un impacto y vectores de ataque autenticados remotamente relacionados con SYS.KUPF$FILE_INT. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 9.8EPSS: 0%CPEs: 7EXPL: 0CVE-2008-2587
https://notcve.org/view.php?id=CVE-2008-2587
15 Jul 2008 — Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and local attack vectors. Vulnerabilidad no especificada en el componente Advanced Replication component de Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, y 10.2.0.3 tiene un impacto desconocido y vectores de ataque locales. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •