CVSS: 9.8EPSS: 25%CPEs: 31EXPL: 0CVE-2003-0222
https://notcve.org/view.php?id=CVE-2003-0222
30 Apr 2003 — Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter. Desbordamiento de búfer basado en la pila en Oracle Net Sevices de Oracle Database Server 9i release 2 y anteriores permite a atacantes ejecutar código arbitrario mediante una consulta "CREATE DATABASE LINK" conteniendo una cadena de conexión con un parámetro USING largo. • http://marc.info/?l=bugtraq&m=105162831008176&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 2%CPEs: 4EXPL: 0CVE-2002-0857
https://notcve.org/view.php?id=CVE-2002-0857
20 Aug 2002 — Format string vulnerabilities in Oracle Listener Control utility (lsnrctl) for Oracle 9.2 and 9.0, 8.1, and 7.3.4, allow remote attackers to execute arbitrary code on the Oracle DBA system by placing format strings into certain entries in the listener.ora configuration file. Vulnerabilidad de formato de cadenas en la utilidad Oracle Listener Control (lsnrctl) en Oracle 9.2, 9.0, 8.1 y 7.3.4 permite a atacantes remotos ejecutar código arbitrario el sitstema Oracle DBA mediante la introducción de cadenas de f... • http://marc.info/?l=bugtraq&m=102933735716634&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0498
https://notcve.org/view.php?id=CVE-2001-0498
21 Jul 2001 — Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. • http://www.nai.com/research/covert/advisories/049.asp •
CVSS: 10.0EPSS: 74%CPEs: 1EXPL: 2CVE-2001-0499 – Oracle 8i - TNS Listener 'ARGUMENTS' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0499
21 Jul 2001 — Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD. • https://www.exploit-db.com/exploits/16340 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0515
https://notcve.org/view.php?id=CVE-2001-0515
21 Jul 2001 — Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. • http://otn.oracle.com/deploy/security/pdf/net8_dos_alert.pdf •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 2CVE-1999-0888 – Oracle 8 8.1.5 - Intelligent Agent
https://notcve.org/view.php?id=CVE-1999-0888
16 Aug 1999 — dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script. • https://www.exploit-db.com/exploits/19460 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-1999-0711 – Oracle 8 - oratclsh Suid
https://notcve.org/view.php?id=CVE-1999-0711
29 Apr 1999 — The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root. • https://www.exploit-db.com/exploits/19125 •