Page 8 of 192 results (0.012 seconds)

CVSS: 3.6EPSS: 17%CPEs: 4EXPL: 0

Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure. Vulnerabilidad no especificada en el componente Oracle Text en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, y v10.2.0.4 permite a los usuarios remotos autenticados comprometer la confidencialidad e integridad, relativo a CTXSYS.DRVXTABC. • http://osvdb.org/59113 http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36748 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •

CVSS: 2.1EPSS: 0%CPEs: 5EXPL: 0

Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL and DBMS_SQL. Vulnerabilidad no especificada en el componente Auditing de Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 y v11.1.0.7 , permite a usuarios autenticados en remoto comprometer la integridad. Está relacionado con DBMS_SYS_SQL y DBMS_SQL. • http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36758 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE. Vulnerabilidad sin especificar en el componente Application Express en Oracle Database v3.0.1, permite a usuarios autenticados remotamente comprometer la confidencialidad e integridad. Relacionado con el FLOWS_030000.WWV_EXECUTE_IMMEDIATE. • http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36759 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •

CVSS: 10.0EPSS: 2%CPEs: 4EXPL: 0

Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad sin especificar en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5 y v10.2.0.4, permite a atacantes remotos comprometer la confidencialidad, disponibilidad e integridad a través de vectores desconocidos. • http://osvdb.org/59111 http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36745 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •

CVSS: 5.4EPSS: 0%CPEs: 3EXPL: 0

Unspecified vulnerability in the Net Foundation Layer component in Oracle Database 9.2.0.8 and 10.1.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Foundation Layer en Oracle Database v9.2.0.8 y v10.1.0.5 permite a atacantes remotos afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/37027 http://www.oracle.com/technetwork/topics/security/cpuoct2009-096303.html http://www.securityfocus.com/bid/36760 http://www.securitytracker.com/id?1023057 http://www.us-cert.gov/cas/techalerts/TA09-294A.html •