3671 matches found
CVE-2010-0903
CVE-2010-0903 is a confirmed Oracle Database Server vulnerability affecting the Net Foundation Layer on Windows, with versions 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1. The issue is remotely exploitable over a network and contributes to availability impact (CVSSv2 base score 7.8). Orac...
CVE-2010-0911
CVE-2010-0911 : The Oracle Database Server Listener component is affected by an unspecified vulnerability that allows remote attackers to impact availability via unknown vectors. The CVE is documented with a base CVSS v2 score of 7.8 (HIGH), attack vector Network, no authentication required, and ...
CVE-2010-0900
CVE-2010-0900 involves the Network Layer component (Oracle Net) in Oracle Database Server on Windows (versions 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, 11.2.0.1). The vulnerability allows remote attackers to affect availability via unknown vectors and is listed in the Oracle July 2010 CPU advisory ...
Oracle Database Server DBMS_CDC_PUBLISH Multiple Procedure SQL Injection (CVE-2010-0870)
Oracle Database Server is an enterprise-level relational database application suite. A SQL injection vulnerability has been reported in Oracle Database Server. The vulnerability is due to input validation errors in the certain procedures of the DBMSCDCPUBLISH package. A remote attacker may exploi...
Oracle Database DBMS_JAVA.SET_OUTPUT_TO_JAVA Privilege Escalation (CVE-2010-0866; CVE-2010-0867)
Oracle Database Server is an enterprise-level relational database application suite. A vulnerability exists in Oracle Database 11g server that could allow users with limited privileges to execute SQL commands with System privileges on the server. The vulnerability is due to an access control...
Oracle Database DBMS_JVM_EXP_PERMS System Command Execution (CVE-2010-0866; CVE-2010-0867)
Oracle Database server is an enterprise-level relational database application suite. A privilege escalation vulnerability exists in Oracle Database server that can allow users with limited privileges to execute arbitrary operating system commands on a target server. The vulnerability is due to an...
Oracle Database Multiple Vulnerabilities (January 2010 CPU)
The remote Oracle database server is missing the January 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Listener - Oracle OLAP - Application Express Application Builder - Oracle Data Pump - Oracle Spatial - Logical Standby -...
Oracle Database Multiple Vulnerabilities (April 2010 CPU)
The remote Oracle database server is missing the April 2010 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Core RDBMS - JavaVM - Change Data Capture - Audit %NASLMINLEVEL 70300 C Tenable Network Security, Inc...
CVE-2010-0860
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to the Create User privilege...
Design/Logic Flaw
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in the JavaVM component in Oracle Database 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in the JavaVM component in Oracle Database 10.2.0.4, 11.1.0.7, and 11.2.0.1.0 allows remote authenticated users to affect integrity via unknown vectors...
CVE-2010-0867
Unspecified vulnerability in the JavaVM component in Oracle Database 10.2.0.4, 11.1.0.7, and 11.2.0.1.0 allows remote authenticated users to affect integrity via unknown vectors...
Design/Logic Flaw
Unspecified vulnerability in the Audit component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to "SELECT, INSERT or DELETE on tables subject to auditing."...
CVE-2010-0870
Unspecified vulnerability in the Change Data Capture component in Oracle Database 9.2.0.8 and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMSCDCPUBLISH...
CVE-2010-0866
Unspecified vulnerability in the JavaVM component in Oracle Database 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...
CVE-2010-0851
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors...
CVE-2010-0852
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors...
CVE-2010-0860
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to the Create User privilege...
CVE-2010-0854
CVE-2010-0854 affects Oracle Database (versions including 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, 11.1.0.7) in the Audit component. The issue is described as an unspecified vulnerability that could let remote authenticated users influence integrity related to auditing on tables, per the NVD entry...