CVSS: 9.6EPSS: 49%CPEs: 2EXPL: 1CVE-2009-0978 – Oracle DB SQL Injection via SYS.LT.ROLLBACKWORKSPACE
https://notcve.org/view.php?id=CVE-2009-0978
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0975. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database 10.2.0.4 y 11.1.0.6 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-0975.... • https://packetstorm.news/files/id/180722 •
CVSS: 7.5EPSS: 54%CPEs: 5EXPL: 2CVE-2009-0991 – Oracle RDBms 10.2.0.3/11.1.0.6 - TNS Listener (PoC)
https://notcve.org/view.php?id=CVE-2009-0991
15 Apr 2009 — Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-1970. Vulnerabilidad no especificada en el componente Listener en Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4 y 11.1.0.7 permite a atacantes remotos afectar la disponibilidad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-1970. • https://packetstorm.news/files/id/76855 •
CVSS: 6.5EPSS: 29%CPEs: 1EXPL: 2CVE-2009-0981 – Oracle APEX 3.2 - Unprivileged DB users can see APEX Password hashes
https://notcve.org/view.php?id=CVE-2009-0981
15 Apr 2009 — Unspecified vulnerability in the Application Express component in Oracle Database 11.1.0.7 allows remote authenticated users to affect confidentiality, related to APEX. NOTE: the previous information was obtained from the April 2009 CPU. Oracle has not commented on reliable researcher claims that this issue allows remote authenticated users to obtain APEX password hashes from the WWV_FLOW_USERS table via a SELECT statement. Vulnerabilidad no especificada en el componente Application Express en Oracle Databa... • https://packetstorm.news/files/id/76731 •
CVSS: 9.6EPSS: 1%CPEs: 2EXPL: 0CVE-2009-0975
https://notcve.org/view.php?id=CVE-2009-0975
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2009-0978. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database 10.2.0.4 y 11.1.0.6 permite a usuarios remotos autenticados afectar la confidencialidad y la integridad a través de vectores desconocidos, una vulnerabilidad diferente a CVE-2009-0978. • http://osvdb.org/53732 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2009-0976
https://notcve.org/view.php?id=CVE-2009-0976
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to LTADM. Vulnerabilidad sin especificar en el componente Workspace Manager en Oracle Database v10.2.0.4 y v11.1.0.6 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad, relacionado con LTADM. • http://osvdb.org/53733 •
CVSS: 8.1EPSS: 0%CPEs: 2EXPL: 0CVE-2009-0980
https://notcve.org/view.php?id=CVE-2009-0980
15 Apr 2009 — Unspecified vulnerability in the SQLX Functions component in Oracle Database 10.2.0.3 and 11.1.0.6 allows remote authenticated users to affect integrity and availability, related to AGGXQIMP. Vulnerabilidad sin especificar en el componente SQLX Functions en Oracle Database v10.2.0.3 y v11.1.0.6 permite a usuarios remotos autenticados afectar a la disponibilidad y la integridad a través de vectores desconocidos, relacionado con AGGXQIMP. • http://secunia.com/advisories/34693 •
CVSS: 8.1EPSS: 0%CPEs: 3EXPL: 0CVE-2009-0984
https://notcve.org/view.php?id=CVE-2009-0984
15 Apr 2009 — Unspecified vulnerability in the Database Vault component in Oracle Database 9.2.0.8DV, 10.2.0.4, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to DBMS_SYS_SQL. Vulnerabilidad no especificada en el componente Database Vault en Oracle Database v9.2.0.8DV, v10.2.0.4 y v11.1.0.6 permite a usuarios remotos autenticados afectar a la confidencialidad y la integridad, en relación con DBMS_SYS_SQL. • http://secunia.com/advisories/34693 •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2009-0985
https://notcve.org/view.php?id=CVE-2009-0985
15 Apr 2009 — Unspecified vulnerability in the Core RDBMS component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.6 allows remote authenticated users with the IMP_FULL_DATABASE role to affect confidentiality, integrity, and availability. Vulnerabilidad no especificada en el componente Core RDBMS de Oracle Database v10.1.0.5, v10.2.0.4 y v11.1.0.6; permite a usuarios autenticados en remotos con el rol IMP_FULL_DATABASE comprometer la confidencialidad, integridad y disponibilidad. • http://secunia.com/advisories/34693 •
CVSS: 8.8EPSS: 1%CPEs: 2EXPL: 0CVE-2009-0986
https://notcve.org/view.php?id=CVE-2009-0986
15 Apr 2009 — Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 and 11.1.0.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Vulnerabilidad no especificada en el componente Workspace Manager en Oracle Database v10.2.0.4 y v11.1.0.6 permite a usuarios autenticados remotamente afectar a la confidencialidad, integridad, y disponibilidad a través de vectores desconocidos. • http://osvdb.org/53735 •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2009-0988 – Oracle 11g Password History
https://notcve.org/view.php?id=CVE-2009-0988
15 Apr 2009 — Unspecified vulnerability in the Password Policy component in Oracle Database 11.1.0.6 allows remote authenticated users to affect confidentiality via unknown vectors. Vulnerabilidad no especificada en el componente Password Policy en Oracle Database v11.1.0.6 permite a usuarios remotos autenticados afectar a la confidencialidad mediante vectores desconocidos. Oracle 11g has an issue where password history is broken if it is set to use 11g passwords exclusively. • http://osvdb.org/53740 •