3671 matches found
Oracle 10g R2 Buffer Overflow
Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracle Database 10g Express Edition CVE : New exploit to...
Oracle - xdb.xdb_pitrig_pkg.PITRIG_DROPMETADATA procedure
Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracle Database 10g Express Edition CVE : New exploit to...
Oracle XDB.XDB_PITRIG_PKG.PITRIG_DROPMETADATA Procedure Exploit
Exploit for windows platform in category remote exploits Exploit Title: New exploit to Oracle CVE-2007-4517 vulnerability Date: 11,2,2011 Author: David Maman and the GreenSQL Team Software Link: http://blog.greensql.com/2011/11/02/new-exploit-to-oracle-vulnerability/ Version: 0.1 Tested on: Oracl...
Oracle Database Multiple Vulnerabilities (October 2011 CPU)
The remote Oracle database server is missing the October 2011 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Oracle Text - Application Express - Core RDBMS - Database Vault %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
TeamSHATTER Security Advisory: Database Vault Account Management Vulnerabilites
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 TeamSHATTER Security Advisory October 20, 2011 Risk Level: Medium Affected versions: Oracle Database Server version 10gR2, 11gR1 and 11gR2 Remote exploitable: Yes Credits: This vulnerability was discovered and researched by Esteban Martinez Fayo of...
CVE-2011-3525
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 allows remote authenticated users to affect confidentiality, integrity, and availability, related to APEX developer user...
CVE-2011-3512
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
CVE-2011-2301
Unspecified vulnerability in the Oracle Text component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability, related to CTXSYS.DRVDISP...
CVE-2011-3525
Unspecified vulnerability in the Application Express component in Oracle Database Server 3.2 and 4.0 allows remote authenticated users to affect confidentiality, integrity, and availability, related to APEX developer user...
CVE-2011-3512
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
Oracle Database Unsupported Version Detection
Binary data 6004.prm...
Oracle Database Unsupported Version Detection
According to its version, the installation of Oracle Database running on the remote host is no longer supported. Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. %NASLMINLEVEL 70300 ...
Timesofmoney Database Hacked using Sql Injection Vulnerability
Timesofmoney Database Hacked using Sql Injection Vulnerability General Information About the Vulnerability This is again a critical vulnerability discovery made by zSecure Team in TimesofMoney website. The group claims that there exist a critical SQL Inejction Vulnerability in the timesofmoney's...
Oracle 1 0 & 11g exp.exe 0day stack overflow-vulnerability warning-the black bar safety net
Just being bored, I found a Oracle 11g database, there is a bit of high impact but low likleyhood of 0day attacks. The vulnerability is the Oracle export utility on the command line to specify the parameter file inside the“file”field within the analysis. The EXPORT utility as privileged code...
CVE-2011-2243
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7.3, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect integrity, related to SYSDBA...
CVE-2011-2240
Unspecified vulnerability in the Oracle Universal Installer component in Oracle Database Server 10.1.0.5 allows local users to affect confidentiality via unknown vectors...
CVE-2011-2244
Unspecified vulnerability in the Security Framework component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality and integrity v...
Design/Logic Flaw
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 11.1.0.7.3, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect integrity, related to SYSDBA...
Design/Logic Flaw
Unspecified vulnerability in the Database Target Type Menus component in Oracle Database Server 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2; and Oracle Enterprise Manager Grid Control 10.1.0.6, 10.2.0.5, and 11.1.0.1; allows remote attackers to affect confidentiality,...
Design/Logic Flaw
Unspecified vulnerability in the Core RDBMS component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2 allows remote authenticated users to affect confidentiality, integrity, and availability, related to SYSDBA...