CVSS: 7.2EPSS: 0%CPEs: 9EXPL: 1CVE-2007-1442
https://notcve.org/view.php?id=CVE-2007-1442
Oracle Database 10g uses a NULL pDacl parameter when calling the SetSecurityDescriptorDacl function to create discretionary access control lists (DACLs), which allows local users to gain privileges. Oracle Database 10g utiliza un parámetro pDacl nulo al llamar a la función que crea listas de control de acceso discrecionales (DACLs), lo cual permite a usuarios locales obtener privilegios. • http://argeniss.com/research/10MinSecAudit.zip http://osvdb.org/33979 http://secunia.com/advisories/24475 http://www.securityfocus.com/bid/22905 •
CVSS: 6.0EPSS: 0%CPEs: 1EXPL: 2CVE-2006-7141 – Oracle 9i/10g - 'utl_file' FileSystem Access
https://notcve.org/view.php?id=CVE-2006-7141
Absolute path traversal vulnerability in Oracle Database Server, when utl_file_dir is set to a wildcard value or "CREATE ANY DIRECTORY to PUBLIC" privileges exist, allows remote authenticated users to read and modify arbitrary files via full filepaths to utl_file functions such as (1) utl_file.put_line and (2) utl_file.get_line, a related issue to CVE-2005-0701. NOTE: this issue is disputed by third parties who state that this is due to an insecure configuration instead of an inherent vulnerability ** IMPUGNADO ** Vulnerabilidad de escalado de ruta en el Servidor de Base de Datos Oracle, cuando el utl_file_dir está establecido a un valor comodín o existen privilegios de "CREATE ANY DIRECTORY to PUBLIC", permite a usuarios remotos autenticados leer y modificar ficheros de su elección pasando rutas completas de ficheros a la función utl_file como la (1) utl_file.put_line y(2) utl_file.get_line, vulnerabilidad relacionada con la CVE-2005-0701. NOTA: esta vulnerabilidad está impugnada por terceras partes que determinan que esto se debe a una configuración insegura en vez de ser propiamente una vulnerabilidad. • https://www.exploit-db.com/exploits/2959 http://www.0xdeadbeef.info/exploits/raptor_orafile.sql http://www.securityfocus.com/archive/1/454862/100/0/threaded http://www.securityfocus.com/archive/1/454964/100/0/threaded http://www.securityfocus.com/archive/1/455047/100/0/threaded •
CVSS: 6.0EPSS: 5%CPEs: 1EXPL: 1CVE-2006-7067
https://notcve.org/view.php?id=CVE-2006-7067
Oracle 10g R2 and possibly other versions allows remote attackers to trigger internal errors, and possibly have other impacts, via an "alter session set events" command with invalid arguments. NOTE: this issue was originally disputed by a third party, but the dispute was retracted. NOTE: this issue was called an "integer overflow" in the original source, but this might be incorrect. Oracle 10g R2 y posiblemente otras versiones permite a atacantes remotos disparar errores internos, y posiblemente tener otros impactos, mediante un comando para "alterar eventos de establecimiento de sesión" con argumentos inválidos. NOTA: este problema fue originalmente impugnado por una tercera parte, pero la impugnación fue retirada. • http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/048251.html http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/048292.html http://securityreason.com/securityalert/2328 http://www.securityfocus.com/archive/1/441345/100/0/threaded http://www.securityfocus.com/archive/1/441477/100/0/threaded •
CVSS: 6.8EPSS: 0%CPEs: 4EXPL: 0CVE-2007-0278
https://notcve.org/view.php?id=CVE-2007-0278
Multiple unspecified vulnerabilities in Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.5 have unknown impact and attack vectors related to (1) NLS Runtime and lmsgen (DB12), and (2) Oracle Text and ctxkbtc (DB14). Múltiples vulnerabilidades no especificadas en Oracle Database 8.1.7.4, 9.0.1.5, 9.2.0.7, y 10.1.0.5 tienen impacto y vectores de ataque desconocidos relacionados con (1) NLS Runtime y lmsgen (DB12), y (2) Oracle Text y ctxkbtc (DB14). • http://osvdb.org/32918 http://osvdb.org/32920 http://secunia.com/advisories/23794 http://securitytracker.com/id?1017522 http://www.oracle.com/technetwork/topics/security/cpujan2007-101493.html http://www.securityfocus.com/bid/22083 http://www.us-cert.gov/cas/techalerts/TA07-017A.html https://exchange.xforce.ibmcloud.com/vulnerabilities/31541 •
CVSS: 6.5EPSS: 1%CPEs: 2EXPL: 1CVE-2007-0274
https://notcve.org/view.php?id=CVE-2007-0274
Multiple unspecified vulnerabilities in Oracle Database 9.2.0.7 and 10.1.0.5 have unknown impact and attack vectors related to (1) Export and sys.dbms_logrep_util (DB08), and (2) Oracle Streams and sys.dbms_capture_adm_internal privileges (DB09). NOTE: Oracle has not disputed reliable researcher claims that DB08 is for a buffer overflow in the GET_OBJECT_NAME procedure in the DBMS_LOGREP_UTIL package, and DB09 is for buffer overflows in the CREATE_CAPTURE, ALTER_CAPTURE, and ABORT_TABLE_INSTANTIATION procedures in SYS.DBMS_CAPTURE_ADM_INTERNAL. Múltiples vulnerabilidades no especificadas en Oracle Database 9.2.0.7 y 10.1.0.5 tienen un impacto desconocido y vectores de ataque relacionados con 1) Export y sys.dbms_logrep_util (DB08), y 2) Oracle Streams y privilegios sys.dbms_capture_adm_internal(DB09). NOTA: Oracle no ha cuestionado las afirmaciones de un investigador fiable de que DB08 es por un desbordamiento de búfer en el proceso GET_OBJECT_NAME en el paquete DBMS_LOGREP_UTIL, y DB09 es por desbordamientos de búfer en los procesos CREATE_CAPTURE, ALTER_CAPTURE, and ABORT_TABLE_INSTANTIATION en SYS.DBMS_CAPTURE_ADM_INTERNAL. • http://osvdb.org/32914 http://osvdb.org/32915 http://secunia.com/advisories/23794 http://securitytracker.com/id?1017522 http://www.oracle.com/technetwork/topics/security/cpujan2007-101493.html http://www.securityfocus.com/archive/1/458037/100/0/threaded http://www.securityfocus.com/archive/1/458041/100/0/threaded http://www.securityfocus.com/archive/1/458112/100/100/threaded http://www.securityfocus.com/archive/1/458126/100/0/threaded http://www.securityfocus.com/archive&#x •