CVSS: 9.8EPSS: 0%CPEs: 101EXPL: 0CVE-2005-3641
https://notcve.org/view.php?id=CVE-2005-3641
16 Nov 2005 — Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication by supplying a valid username. • http://www.ngssoftware.com/papers/database-on-xp.pdf •
CVSS: 9.8EPSS: 25%CPEs: 31EXPL: 0CVE-2003-0222
https://notcve.org/view.php?id=CVE-2003-0222
30 Apr 2003 — Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter. Desbordamiento de búfer basado en la pila en Oracle Net Sevices de Oracle Database Server 9i release 2 y anteriores permite a atacantes ejecutar código arbitrario mediante una consulta "CREATE DATABASE LINK" conteniendo una cadena de conexión con un parámetro USING largo. • http://marc.info/?l=bugtraq&m=105162831008176&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 1%CPEs: 27EXPL: 0CVE-2002-0567
https://notcve.org/view.php?id=CVE-2002-0567
03 Jul 2002 — Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process. • http://marc.info/?l=bugtraq&m=101301332402079&w=2 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2001-0498
https://notcve.org/view.php?id=CVE-2001-0498
21 Jul 2001 — Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. • http://www.nai.com/research/covert/advisories/049.asp •
CVSS: 10.0EPSS: 74%CPEs: 1EXPL: 2CVE-2001-0499 – Oracle 8i - TNS Listener 'ARGUMENTS' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-0499
21 Jul 2001 — Buffer overflow in Transparent Network Substrate (TNS) Listener in Oracle 8i 8.1.7 and earlier allows remote attackers to gain privileges via a long argument to the commands (1) STATUS, (2) PING, (3) SERVICES, (4) TRC_FILE, (5) SAVE_CONFIG, or (6) RELOAD. • https://www.exploit-db.com/exploits/16340 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-0515
https://notcve.org/view.php?id=CVE-2001-0515
21 Jul 2001 — Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. • http://otn.oracle.com/deploy/security/pdf/net8_dos_alert.pdf •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 2CVE-1999-0888 – Oracle 8 8.1.5 - Intelligent Agent
https://notcve.org/view.php?id=CVE-1999-0888
16 Aug 1999 — dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script. • https://www.exploit-db.com/exploits/19460 •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 1CVE-1999-0711 – Oracle 8 - oratclsh Suid
https://notcve.org/view.php?id=CVE-1999-0711
29 Apr 1999 — The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root. • https://www.exploit-db.com/exploits/19125 •