8 matches found
EUVD-2006-0332
Malware in sbrugna...
Oracle HTTP Server (January 2006 CPU)
According to its banner, the version of Oracle HTTP Server installed on the remote host is potentially affected by multiple vulnerabilities : - An unspecified information disclosure issue exists. CVE-2006-0286 - An unspecified error can allow denial of service attacks. CVE-2006-0287 C Tenable...
Oracle Database Multiple Vulnerabilities (January 2006 CPU)
The remote Oracle database server is missing the January 2006 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Change Data Capture - Connection Manager - Data Pump - Data Pump Metadata API - Dictionary - Java Net...
Oracle Database Net Listener vulnerability
Overview An unspecified vulnerability in Oracle Net Listener may allow a remote attacker to compromise system confidentiality, integrity, and availability. Description Oracle Net Listener contains a vulnerability.The details of this vulnerability are not clear. However, Oracle states this issue c...
Oracle Database Data Pump Metadata API SQL injection vulnerability
Overview Oracle Database Data Pump Metadata API is vulnerable to SQL injection, which could allow a remote attacker to execute arbitrary SQL commands on a vulnerable Oracle installation. Description The Oracle Database Data Pump Metadata API fails to properly filter user-supplied input. This may...
Oracle TNS protocol fails to properly validate authentication requests
Overview The Oracle TNS protocol authentication mechanism fails to properly sanitize authentication requests, possibly allowing a remote attacker to execute arbitrary SQL statements with elevated privileges. Description Oracle databases authenticate and manage database connections via Oracle...
Oracle Reports arbitrary file reading vulnerability
Overview Oracle Reports fails to validate URI parameters, possibly allowing a remote attacker to read arbitrary files on the Reports Server. Description Oracle Reports is an enterprise reporting tool that extracts data from multiple sources and inserts it into a formatted report. It is a componen...
CVE-2006-0176
Buffer overflow in certain functions in src/fileio.c and src/unix/fileio.c in xmame before 11 January 2006 may allow local users to gain privileges via a long 1 -lang, 2 -ctrlr, 3 -pb, or 4 -rec argument on many operating systems, and via a long 5 -jdev argument on Ubuntu Linux...