Lucene search
K

3671 matches found

CVE
CVE
added 2010/04/13 10:0 p.m.53 views

CVE-2010-0852

CVE-2010-0852 affects Oracle Database XML DB component across versions 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3. The vulnerability is described as unspecified, allowing remote authenticated users to affect confidentiality and integrity via unknown vectors. The connected NVD entry provides a CVS...

5.5CVSS5.5AI score0.01984EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/04/13 10:0 p.m.20 views

CVE-2010-0851

Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors...

5.4AI score0.01971EPSS
Exploits0References3
CVE
CVE
added 2010/04/13 10:0 p.m.71 views

CVE-2010-0866

CVE-2010-0866 concerns Oracle Database JavaVM; connected docs cite exploits for DBMS_JVM_EXP_PERMS enabling OS command/code execution via remote authenticated users (CREATE_SESSION) on Oracle DB 10gR2/11gR1/R2. The flaw allows granting Java IO privileges, per Metasploit modules referenced in PACK...

6.5CVSS5.7AI score0.1125EPSS
Exploits4References2Affected Software1
CVE
CVE
added 2010/04/13 10:0 p.m.66 views

CVE-2010-0867

CVE-2010-0867 targets Oracle Database JavaVM; connected advisories disclose a privilege escalation/command execution flaw in the DBMS_JAVA/DBMS_JVM_EXP_PERMS paths. Remote authenticated users with CREATE_SESSION can exploit the weakness to execute arbitrary OS commands, potentially with elevated ...

4CVSS5.7AI score0.01327EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2010/04/13 10:0 p.m.22 views

CVE-2010-0870

Unspecified vulnerability in the Change Data Capture component in Oracle Database 9.2.0.8 and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMSCDCPUBLISH...

5.5AI score0.12555EPSS
Exploits2References3
Cvelist
Cvelist
added 2010/04/13 10:0 p.m.26 views

CVE-2010-0866

Unspecified vulnerability in the JavaVM component in Oracle Database 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

5.5AI score0.1125EPSS
Exploits4References2
CVE
CVE
added 2010/04/13 10:0 p.m.63 views

CVE-2010-0870

CVE-2010-0870 affects Oracle Database 9.2.0.8 and 9.2.0.8DV in the Change Data Capture component, related to SYS.DBMS_CDC_PUBLISH. Connected sources describe a SQL injection flaw in the DBMS_CDC_PUBLISH.DROP_CHANGE_SOURCE procedure that can be exploited by any user with execute privilege (default...

3.6CVSS5.6AI score0.12555EPSS
Exploits2References3Affected Software1
CVE
CVE
added 2010/04/13 10:0 p.m.54 views

CVE-2010-0860

CVE-2010-0860 affects Oracle Database Core RDBMS components in 9.2.0.8 (and DV variants), 10.1.0.5, 10.2.0.4, and 11.1.0.7. The vulnerability allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to the Create User privilege. The issu...

7.1CVSS5.6AI score0.02646EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2010/04/13 10:0 p.m.26 views

CVE-2010-0867

Unspecified vulnerability in the JavaVM component in Oracle Database 10.2.0.4, 11.1.0.7, and 11.2.0.1.0 allows remote authenticated users to affect integrity via unknown vectors...

5.5AI score0.01327EPSS
Exploits0References2
Check Point Advisories
Check Point Advisories
added 2010/03/09 12:0 a.m.3 views

Oracle Database DBMS TNS Listener Denial of Service (CVE-2009-0991)

Oracle Database Server is an enterprise-level relational database application suite. To extend the functionality of the Oracle Database Server, extra packages of related program objects, e.g., procedures, functions, variables, constants, cursors, and exceptions, are provided in order to better...

5CVSS6.7AI score0.07578EPSS
Exploits7
Saint
Saint
added 2010/02/26 12:0 a.m.16 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

1.8AI score
Exploits0
Saint
Saint
added 2010/02/26 12:0 a.m.16 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

7.7AI score
Exploits0
Saint
Saint
added 2010/02/26 12:0 a.m.51 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

1.8AI score
Exploits0
Saint
Saint
added 2010/02/26 12:0 a.m.14 views

Oracle Database DBMS_JVM_EXP_PERMS IMPORT_JVM_PERMS privilege elevation

Added: 02/26/2010 BID: 38115 OSVDB: 62184 Background Oracle Database embeds a Java runtime environment called OracleJVM. The DBMSJVMEXPPERMS package is included in Oracle Database and is used for importing and exporting Java permissions between database servers. Problem A privilege elevation...

7.7AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2010/02/22 12:0 a.m.4 views

Oracle Database DBMS_Scheduler Privilege Escalation (CVE-2005-1496)

Oracle Database Server is an enterprise-level relational database application suite. To extend the functionality of the Oracle Database Server, extra packages are provided to the database user in order to better manage the data. One such package is the DBMSScheduler, which is a task scheduling...

4.6CVSS6.2AI score0.38312EPSS
Exploits1
exploitpack
exploitpack
added 2010/02/05 12:0 a.m.14 views

Oracle 11g - Multiple Privilege Escalation Vulnerabilities

Oracle 11g - Multiple Privilege Escalation Vulnerabilities source: https://www.securityfocus.com/bid/38115/info Oracle Database is prone to multiple remote privilege-escalation issues because it fails to properly restrict access to certain packages. The attacker can exploit these issues to escala...

0.7AI score
Exploits0
exploitpack
exploitpack
added 2010/02/05 12:0 a.m.30 views

Oracle 10g - Multiple Privilege Escalation Vulnerabilities

Oracle 10g - Multiple Privilege Escalation Vulnerabilities source: https://www.securityfocus.com/bid/38115/info Oracle Database is prone to multiple remote privilege-escalation issues because it fails to properly restrict access to certain packages. The attacker can exploit these issues to escala...

0.8AI score
Exploits0
Prion
Prion
added 2010/02/03 6:30 p.m.10 views

Code injection

Unspecified vulnerability in HP Enterprise Cluster Master Toolkit ECMT B.05.00 on HP-UX B.11.23 11i v2 and HP-UX B.11.31 11i v3 allows local users to gain access to an Oracle or Sybase database via unknown vectors...

6.2CVSS6.3AI score0.00311EPSS
Exploits0References7Affected Software1
NVD
NVD
added 2010/02/03 6:30 p.m.18 views

CVE-2009-4184

Unspecified vulnerability in HP Enterprise Cluster Master Toolkit ECMT B.05.00 on HP-UX B.11.23 11i v2 and HP-UX B.11.31 11i v3 allows local users to gain access to an Oracle or Sybase database via unknown vectors...

6.2CVSS6.1AI score0.00311EPSS
Exploits0References7
Check Point Advisories
Check Point Advisories
added 2010/02/02 12:0 a.m.3 views

Oracle Database Server Workspace Manager Multiple SQL Injection (CVE-2008-3982)

Oracle Database Server is an enterprise-level relational database application suite. To extend the functionality of the Oracle Database Server, extra packages of related program objects, i.e., procedures, functions, variables, constants, cursors, and exceptions, are provided in order to better...

5.5CVSS7.7AI score0.1143EPSS
Exploits3
Rows per page
Query Builder