Lucene search
K

3671 matches found

Prion
Prion
added 2011/04/20 3:14 a.m.17 views

Design/Logic Flaw

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect integrity and availability, related to SYSDBA...

3.6CVSS6AI score0.01053EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2011/04/20 3:14 a.m.20 views

Design/Logic Flaw

Unspecified vulnerability in the Network Foundation component in Oracle Database Server 10.1.0.5, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2, when running on Windows, allows remote attackers to affect availability via unknown vectors...

5CVSS6.5AI score0.01748EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2011/04/20 3:9 a.m.101 views

CVE-2011-0785

CVE-2011-0785 affects Oracle Help component exposed by Oracle Database Server (versions 11.1.0.7, 11.2.0.1, 11.2.0.2, 10.1.0.5, 10.2.0.3–10.2.0.5, 10.1.0.5) and Oracle Fusion Middleware (11.1.1.2.0–11.1.1.4.0). Root cause: unspecified vulnerability in the Oracle Help component allowing remote int...

4.3CVSS6AI score0.01361EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2011/04/20 3:9 a.m.95 views

CVE-2011-0806

CVE-2011-0806 affects Oracle Database Server on Windows (10gR1/10gR2/11gR1/11gR2, etc.) in the Network Foundation component. Multiple connected sources describe an unspecified vulnerability that can allow remote attackers to affect availability via unknown vectors. The vulnerability is linked to ...

5CVSS6.1AI score0.01748EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2011/04/20 3:9 a.m.92 views

CVE-2011-0804

CVE-2011-0804 affects Oracle Database Server via the Database Vault component across versions 10.2.0.3–11.2.0.2. The impact is confidentiality and integrity with unknown vectors and requires remote authenticated access (per CVE entry and NVD entry). Oracle’s April 2011 CPU advisory documents this...

3.6CVSS5.5AI score0.01017EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2011/04/20 3:9 a.m.33 views

CVE-2011-0785

Unspecified vulnerability in the Oracle Help component in Oracle Database Server 11.1.0.7, 11.2.0.1, 11.2.0.2, 10.1.0.5, 10.2.0.3, 10.2.0.4, 10.2.0.5, and 10.1.0.5; and Oracle Fusion Middleware 11.1.1.2.0, 11.1.1.3.0, and 11.1.1.4.0 allows remote attackers to affect integrity via unknown vectors...

5.9AI score0.01361EPSS
Exploits0References1
CVE
CVE
added 2011/04/20 3:9 a.m.108 views

CVE-2011-0792

CVE-2011-0792 affects Oracle Warehouse Builder (OWB) in Oracle Database Server 10.2.0.5 and 11.1.0.7. The vulnerability is a PL/SQL injection in OWBREPOS_OWNER.WB_OLAP_AW_SET_SOLVE_ID, which can let an attacker with OWBREPOS_OWNER rights escalate privileges and potentially access the OS. This is ...

6.5CVSS5.4AI score0.01447EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2011/04/20 3:9 a.m.25 views

CVE-2011-0806

Unspecified vulnerability in the Network Foundation component in Oracle Database Server 10.1.0.5, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.1, and 11.2.0.2, when running on Windows, allows remote attackers to affect availability via unknown vectors...

6AI score0.01748EPSS
Exploits0References1
Cvelist
Cvelist
added 2011/04/20 3:9 a.m.34 views

CVE-2011-0792

Unspecified vulnerability in the Oracle Warehouse Builder component in Oracle Database Server 10.2.0.5 OWB and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to Dimensional Data Modeling...

5.3AI score0.01447EPSS
Exploits0References1
NVD
NVD
added 2011/01/19 4:0 p.m.33 views

CVE-2010-3600

Unspecified vulnerability in the Client System Analyzer component in Oracle Database Server 11.1.0.7 and 11.2.0.1 and Enterprise Manager Grid Control 10.2.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was...

7.5CVSS6.1AI score0.76694EPSS
Exploits4References9
Prion
Prion
added 2011/01/19 4:0 p.m.25 views

Design/Logic Flaw

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

6.8CVSS6.5AI score0.0218EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2011/01/19 4:0 p.m.21 views

Design/Logic Flaw

Unspecified vulnerability in the Oracle Spatial component in Oracle Database Server 10.2.0.4, 11.1.0.7, and 11.2.0.1 allows remote authenticated users to affect confidentiality and integrity, related to MDSYS...

4.9CVSS5.6AI score0.01521EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/01/19 3:0 p.m.32 views

CVE-2010-4420

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows local users to affect confidentiality and integrity via unknown vectors...

5.4AI score0.00369EPSS
Exploits0References6
CVE
CVE
added 2011/01/19 3:0 p.m.96 views

CVE-2010-4420

CVE-2010-4420 affects Oracle Database with Database Vault (versions 10.2.0.3–10.2.0.5, 11.1.0.7, 11.2.0.1). The initial entry describes an unspecified local vulnerability affecting confidentiality and integrity via unknown vectors in the Database Vault component. Connected sources confirm the vul...

3.6CVSS5.5AI score0.00369EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2011/01/19 3:0 p.m.25 views

CVE-2010-4421

Unspecified vulnerability in the Database Vault component in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, and 11.2.0.1 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors...

6AI score0.0218EPSS
Exploits0References6
CVE
CVE
added 2011/01/19 3:0 p.m.86 views

CVE-2010-4421

CVE-2010-4421 concerns Oracle Database Server’s Database Vault component (versions 10.2.0.3–11.2.0.1). The connected ThreatPost coverage notes it is remotely exploitable over HTTP without authentication, allowing impacts to confidentiality, integrity, and availability. The CVE is addressed in Ora...

6.8CVSS6.2AI score0.0218EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/01/19 12:0 a.m.50 views

Oracle Database Multiple Vulnerabilities (January 2011 CPU)

The remote Oracle database server is missing the January 2011 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Client System Analyzer - Cluster Verify Utility - Database Vault - Oracle Spatial - Scheduler Agent - UIX %NASLMINLEVEL...

7.5CVSS5.4AI score0.76694EPSS
Exploits4References7
Tenable Nessus
Tenable Nessus
added 2010/11/18 12:0 a.m.53 views

Oracle Database Multiple Vulnerabilities (October 2010 CPU)

The remote Oracle database server is missing the October 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Enterprise Manager Console - Java Virtual Machine - Change Data Capture - OLAP - Job Queue - XDK - Core RDBMS - Perl...

7.5CVSS6.1AI score0.09736EPSS
Exploits6References10
The Hacker News
The Hacker News
added 2010/11/04 12:28 a.m.18 views

Update : Havij v1.13 automated SQL Injection tool - New version

Update : Havij v1.13 automated SQL Injection tool - New version "Havij is an automated SQL Injection tool that helps penetration testers to find and exploit SQL Injection vulnerabilities on a web page. It can take advantage of a vulnerable web application. By using this software user can perform...

8.4AI score
Exploits0
seebug.org
seebug.org
added 2010/10/26 12:0 a.m.44 views

Oracle数据库CREATE_CHANGE_SET过程SQL注入漏洞

BUGTRAQ ID: 43956 CVE ID: CVE-2010-2415 Oracle是大型的商业数据库系统。 Oracle数据库的Change Data Capture组件中提供了一个DBMSCDCPUBLISH PL/SQL软件包,该软件包的CREATECHANGESET过程中存在SQL注入漏洞。恶意用户可以以特殊参数调用有漏洞的过程,导致以SYS用户的权限执行SQL语句。 利用这个漏洞要求拥有对SYS.DBMSCDCPUBLISH软件包的EXECUTE权限。默认下给予了EXECUTECATALOGROLE角色的用户拥有这个权限。 Oracle Database 11.2.0....

4.9CVSS6.4AI score0.09736EPSS
Exploits3
Rows per page
Query Builder