8 matches found
EUVD-2006-7049
Malware in sbrugna...
CVE-2007-4517
Buffer overflow in the XDB.XDBPITRIGPKG.PITRIGDROPMETADATA procedure in Oracle 10g R2 allows remote authenticated users to execute arbitrary code via a long 1 OWNER or 2 NAME argument...
Buffer overflow
Buffer overflow in the XDB.XDBPITRIGPKG.PITRIGDROPMETADATA procedure in Oracle 10g R2 allows remote authenticated users to execute arbitrary code via a long 1 OWNER or 2 NAME argument...
CVE-2007-4517
CVE-2007-4517 affects Oracle Database 10g Release 2, specifically the XDB_PITRIG_PKG.PITRIG_DROPMETADATA procedure. A buffer overflow is triggered by a long combined OWNER or NAME parameter, enabling remote authenticated attackers to execute arbitrary code. Exploitation evidence exists in multipl...
CVE-2006-7067
Oracle 10g R2 and possibly other versions allows remote attackers to trigger internal errors, and possibly have other impacts, via an "alter session set events" command with invalid arguments. NOTE: this issue was originally disputed by a third party, but the dispute was retracted. NOTE: this iss...
Oracle 10g R2 Enterprise Manager Directory Traversal
======= Summary ======= Today: 31 January 2007 Reference: NGS00402 Discover: Mark Litchfield Name: Oracle 10g R2 Enterprise Manager Directory Traversal Safe Name: Oracle 10g R2 Enterprise Manager Vendor: Oracle Systems Affected: Oracle 10g R2 Enterprise Manager Risk: Medium Status: Published...
CVE-2006-2505
Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via a reference to a malicious package in the TYPENAME argument in the 1 GETDOMAININDEXTABLES or 2 GETV2DOMAININDEXTABLES function in the DBMSEXPORTEXTENSION package...
Sql injection
Oracle Database Server 10g Release 2 allows local users to execute arbitrary SQL queries via a reference to a malicious package in the TYPENAME argument in the 1 GETDOMAININDEXTABLES or 2 GETV2DOMAININDEXTABLES function in the DBMSEXPORTEXTENSION package...