CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2009-2001
https://notcve.org/view.php?id=CVE-2009-2001
22 Oct 2009 — Unspecified vulnerability in the PL/SQL component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente PL/SQL en Oracle Database v10.2.0.4 y 11.1.0.7 permite a los usuarios remotos autenticados comprometer la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • http://secunia.com/advisories/37027 •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2009-1969
https://notcve.org/view.php?id=CVE-2009-1969
14 Jul 2009 — Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente Auditing en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 que permite a los usuarios remotos autenticados afectar la confidencialidad a través de vectores desconocidos. • http://osvdb.org/55894 •
CVSS: 7.5EPSS: 10%CPEs: 5EXPL: 1CVE-2009-1970 – Oracle 9i/10g Database - TNS Command Remote Denial of Service
https://notcve.org/view.php?id=CVE-2009-1970
14 Jul 2009 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-0991. Vulnerabilidad no especificada en el componente Listener en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4 y 11.1.0.7 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-0991. • https://www.exploit-db.com/exploits/33083 •
CVSS: 9.6EPSS: 0%CPEs: 3EXPL: 0CVE-2009-1973
https://notcve.org/view.php?id=CVE-2009-1973
14 Jul 2009 — Unspecified vulnerability in the Virtual Private Database component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to VPD policies. Vulnerabilidad no especificada en el componente Virtual Private Database en Oracle Database v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a los usuario remotos autenticados afectar la confidencialidad y integridad en relación a las políticas VPD. • http://osvdb.org/55890 •
CVSS: 9.8EPSS: 11%CPEs: 5EXPL: 1CVE-2009-1019 – Oracle 9i/10g Database - Remote Network Authentication
https://notcve.org/view.php?id=CVE-2009-1019
14 Jul 2009 — Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad inespecífica en el componente Network Authentication en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4, y v11.1.0.7 permite a atacantes remotos afectar a al confidencialidad, integridad y la disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33081 •
CVSS: 9.0EPSS: 4%CPEs: 5EXPL: 1CVE-2009-1020 – Oracle 9i/10g Database - Network Foundation Remote Overflow
https://notcve.org/view.php?id=CVE-2009-1020
14 Jul 2009 — Unspecified vulnerability in the Network Foundation component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Network Foundation en Oracle Database v9.2.0.8, v9.2.0.8DV, v10.1.0.5, v10.2.0.4 permite a los usuario remotos autenticados afectar la confidencialidad, integridad y disponibilidad a través de vectores desconocidos. • https://www.exploit-db.com/exploits/33084 •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 0CVE-2009-0972
https://notcve.org/view.php?id=CVE-2009-0972
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 11.1.0.6, 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database v11.1.0.6, v11.1.0.7, v10.2.0.3, v10.2.0.4, v10.1.0.5, v9.2.0.8, y v9.2.0.8DV permite a usuarios remotos autenticados afectar a la confidencialidad, integridadad y ... • http://secunia.com/advisories/34693 •
CVSS: 8.8EPSS: 5%CPEs: 3EXPL: 1CVE-2008-6065 – Oracle Database Server 11.1 - 'CREATE ANY Directory' Privilege Escalation
https://notcve.org/view.php?id=CVE-2008-6065
05 Feb 2009 — Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated users with CREATE ANY DIRECTORY privileges to gain SYSDBA privileges by aliasing the pathname of the password directory, and then overwriting the password file through UTL_FILE operations, a related issue to CVE-2006-7141. Oracle Database Server v10.1, v10.2, y 11g concede permisos WRITE al directorio para rutas a... • https://www.exploit-db.com/exploits/32475 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2008-2591
https://notcve.org/view.php?id=CVE-2008-2591
15 Jul 2008 — Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.3, and 11.1.0.6 has unknown impact and remote authenticated attack vectors. Vulnerabilidad sin especificar en el Componente Oracle Database Vault en Oracle Database 9.2.0.8DV, 10.2.0.3, y 11.1.0.6, tiene vectores de ataque e impacto desconocidos. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •
CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2008-2602
https://notcve.org/view.php?id=CVE-2008-2602
15 Jul 2008 — Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 has unknown impact and remote authenticated attack vectors related to the IMP_FULL_DATABASE role. Vulnerabilidad no especificada en el componente Data Pump de Oracle Database 10.1.0.5, 10.2.0.4, y 11.1.0.6 tiene un impacto desconocido y vectores de ataque remotos autenticados relacionados al perfil IMP_FULL_DATABASE. • http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00727143 •