16 matches found
CVE-2024-41709
Backdrop CMS before 1.27.3 and 1.28.x before 1.28.2 does not sufficiently sanitize field labels before they are displayed in certain places. This vulnerability is mitigated by the fact that an attacker must have a role with the "administer fields" permission...
EUVD-2001-0814
Malware in sbrugna...
EUVD-2006-0268
Malware in sbrugna...
EUVD-2018-13270
Malware in sbrugna...
Oracle Auditing Part 3: Unified Auditing
This is the third, and last, article on the topic of Oracle auditing. It is relevant to Oracle 12c only. With Unified Auditing, Oracle simplified the task of auditing activities in a modern database environment, and rather than having to learn multiple methods, patterns, and techniques for both...
Oracle Database Multiple Vulnerabilities (January 2006 CPU)
The remote Oracle database server is missing the January 2006 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Advanced Queuing - Change Data Capture - Connection Manager - Data Pump - Data Pump Metadata API - Dictionary - Java Net...
Oracle Database Multiple Vulnerabilities (October 2005 CPU)
The remote Oracle database server is missing the October 2005 Critical Patch Update CPU and therefore is potentially affected by security issues in the following components : - Change Data Capture - Data Guard Logical Standby - Data Pump Export - Database Scheduler - Export - Locale - Materialize...
Design/Logic Flaw
Multiple unspecified vulnerabilities in Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.5 have unspecified impact and attack vectors, as identified by Oracle Vuln 1 DB07 in the Dictionary component and 2 DB14 in the Oracle Label Security component. NOTE: Oracle has not disputed...
CVE-2006-0261
Multiple unspecified vulnerabilities in Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.5 have unspecified impact and attack vectors, as identified by Oracle Vuln 1 DB07 in the Dictionary component and 2 DB14 in the Oracle Label Security component. NOTE: Oracle has not disputed...
CVE-2006-0261
CVE-2006-0261 affects Oracle Database Server versions 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.5, linked to two Oracle vulnerabilities (DB07 in Dictionary; DB14 in Oracle Label Security) with unspecified impact/attack vectors. A note states researchers claim DB07 involves plaintext storage of the TD...
CVE-2005-3438
Multiple unspecified vulnerabilities in Oracle Database Server 9i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln 1 DB04 in Change Data Capture; 2 DB06 in Data Guard Logical Standby; 3 DB10 in Locale; 4 DB12 in Materialized Views; 5 DB13 in Objects Extension; 6 DB15 in...
CVE-2005-3438
Multiple unspecified vulnerabilities in Oracle Database Server 9i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln 1 DB04 in Change Data Capture; 2 DB06 in Data Guard Logical Standby; 3 DB10 in Locale; 4 DB12 in Materialized Views; 5 DB13 in Objects Extension; 6 DB15 in...
Oracle 10g Exploit dbms_scheduler SESSION_USER issue
Name DBMSSCHEDULER SESSIONUSER issue in Oracle 10g Systems Affected Oracle 10g Severity Medium Risk Category Switch Oracle Username to user SYS Vendor URL http://www.oracle.com/ Credit Oracle Metalink Forum 633336.995 Exploit...
CVE-2001-0831
Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SETLABEL, or SQLPredicate is being used, allows local users to gain additional access...
CVE-2001-0831
Unknown vulnerability in Oracle Label Security in Oracle 8.1.7 and 9.0.1, when audit functionality, SETLABEL, or SQLPredicate is being used, allows local users to gain additional access...
FW: ASI Oracle Security Alert: 3 new security alerts
I have not seen the latest Oracle bugs on the list yet. 2 and 3 were credited to Juan Manuel Pascual EscribГ by Oracle. -----Original Message----- From: [email protected] mailto:[email protected] Sent: 23 October 2001 11:00 To: [email protected] Subject: ASI Oracle Security Alert: 3 n...