Lucene search
K

3672 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

Oracle 11g Multiple Remote Privilege Escalation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38115/info Oracle Database is prone to multiple remote privilege-escalation issues because it fails to properly restrict access to certain packages. The attacker can exploit these issues to escalate their privileges to DB...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

Oracle Database 10.1 MDSYS.MD2.SDO_CODE_SIZE Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13145/info Oracle Database is reported prone to a buffer overflow vulnerability. Reportedly this issue affects the 'MDSYS.MD2.SDOCODESIZE' procedure. An attacker can supply excessive data to an affected routine resulting ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.44 views

Oracle 9i/10g Database Remote Network Authentication Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35680/info Oracle Database is prone to a remote vulnerability in Network Authentication. The vulnerability can be exploited over the 'Oracle Net' protocol. An attacker doesn't require privileges to exploit this...

7.5CVSS0.1AI score0.10473EPSS
Exploits3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Oracle <= 10g Release 2 (DBMS_EXPORT_EXTENSION) Local SQL Exploit

No description provided by source. / 0day, description is wrong. /str0ke / / Fucking NON-0 day$ exploit for Oracle 10g 10.2.0.2.0 Patch your database now! by N1V1Hd $3c41r3 / CREATE OR REPLACE PACKAGE MYBADPACKAGE AUTHID CURRENTUSER IS FUNCTION ODCIIndexGetMetadata oindexinfo SYS.odciindexinfo,P3...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Oracle Database Authentication Protocol Security Bypass

No description provided by source. Source: http://www.securityfocus.com/bid/55651/info Oracle Database is prone to a remote security-bypass vulnerability that affects the authentication protocol. An attacker can exploit this issue to bypass the authentication process and gain unauthorized access ...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Oracle Database Server <= 11.1 'CREATE ANY DIRECTORY' Privilege Escalation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/31738/info Oracle Database Server is prone to a privilege-escalation issue related to the 'CREATE ANY DIRECTORY' user privilege. Attackers may exploit this issue to gain full SYSDBA privileges on the vulnerable database...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.39 views

Oracle Database Server 9.0.x Oracle Binary Local Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8844/info Oracle Database Server 'oracle' binary has been reported prone to a local buffer overflow vulnerability. The issue likely presents itself due to a lack of sufficient boundary checks performed on command line...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.26 views

Oracle 9i/10g DBMS_METADATA.GET_DDL - SQL Injection Exploit (2)

No description provided by source. !/usr/bin/perl Remote Oracle DBMSMETADATA.GETDDL exploit 9i/10g - Version 2 - New evil cursor injection tip! - No create procedure privileg needed! - See: http://www.databasesecurity.com/ Cursor Injection Grant or revoke dba permission to unprivileged user Teste...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.33 views

Oracle Database 10.1.0.5 - 10.2.0.4 - AUTH_SESSKEY Length Validation Remote Buffer Overflow Vulnerability

No description provided by source. include winsock2.h include stdio.h include string.h include windows.h include assert.h include string void ssend SOCKET s, char msg, DWORD size int sent; printf ssend: begin: %d bytes\n, size; sent=send s, charmsg, size, 0; if sent==SOCKETERROR printf send -...

10CVSS0.4AI score0.76361EPSS
Exploits11
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.12 views

Oracle Database Server 8.1.7/9.0.x ctxsys.driload Access Validation Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/11099/info Oracle Database Server is prone to an access validation vulnerability that may permit unprivileged users to execute commands as the DBA. This could compromise the database. SQL exec ctxsys.driload.validatestmt...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.18 views

Oracle 10g Multiple Remote Privilege Escalation Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/38115/info Oracle Database is prone to multiple remote privilege-escalation issues because it fails to properly restrict access to certain packages. The attacker can exploit these issues to escalate their privileges to DB...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.20 views

Oracle Database 8i/9i Multiple Remote Directory Traversal Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/12749/info Oracle Database server is reported prone to multiple directory traversal vulnerabilities that may allow a remote attacker to read, write, or rename arbitrary files with the privileges of the Oracle Database...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.16 views

OraMon 2.0.1 - Remote Config File Disclosure Vulnerability

No description provided by source. ........................ .............................................. +++++Bypass Config Download Vulnerability+++++ ............................................... script:Oramon = Oracle Database Monitoring...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.31 views

Oracle 10g Database SUBSCRIPTION_NAME Remote SQL Injection Vulnerability (2)

No description provided by source. source: http://www.securityfocus.com/bid/13236/info Oracle database is prone to an SQL-injection vulnerability because the software fails to properly sanitize user-supplied data. The 'SUBSCRIPTIONNAME' parameter is vulnerable. Packages that employ this parameter...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.23 views

Oracle 9i/10g Database Fine Grained Audit Logging Failure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/13510/info Oracle 9i/10g Database is prone to a logging failure vulnerability that exists in Fine Grained Audit FGA functionality. Reports indicate that FGA may be disabled inadvertently, without notifying the database...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.14 views

Oracle 11.1 Database Network Foundation Heap Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/35677/info Oracle Database is prone to a remote heap memory-corruption vulnerability in Network Foundation. The vulnerability can be exploited over the 'Oracle Net' protocol. An attacker doesn't require privileges to...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.68 views

Oracle Database Remote Listener Memory Corruption Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/37728/info Oracle Database is prone to a remote memory-corruption vulnerability in Listener. The vulnerability can be exploited over the 'Oracle Net' protocol. An attacker does not require privileges to exploit this...

10CVSS0.0983EPSS
Exploits4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.28 views

Oracle Database Client System Analyzer Arbitrary File Upload

No description provided by source. This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2014/06/18 11:42 a.m.6 views

Flaws Found in USCIS RFID Card Production System

The system that’s used to produce RFID-enabled identification cards–including permanent resident IDs–by the United States Citizenship and Immigration Service has a number of serious security issues, according to a new report from the Office of the Inspector General at DHS. Among the issues the OI...

0.1AI score
Exploits0References1
securityvulns
securityvulns
added 2014/06/17 12:0 a.m.134 views

[SE-2014-01] Security vulnerabilities in Oracle Database Java VM

Hello All, Security Explorations discovered multiple security issues in the implementation of a Java VM embedded in Oracle Database software 1. Discovered security issues violate many "Secure Coding Guidelines for the Java Programming Language" 2. Most of them demonstrate a well known problem...

Exploits0
Rows per page
Query Builder