Lucene search
K

8 matches found

Exploit DB
Exploit DB
added 2009/10/30 12:0 a.m.64 views

Oracle Database 10.1.0.5 < 10.2.0.4 - AUTH_SESSKEY Length Validation Remote Buffer Overflow

include include include include include include void ssend SOCKET s, char msg, DWORD size int sent; printf "ssend: begin: %d bytes\n", size; sent=send s, charmsg, size, 0; if sent==SOCKETERROR printf "send - SOCKETERROR, WSAGetLastError=%d\n", WSAGetLastError; else if sent!=size printf "sent only...

10CVSS6.4AI score0.76361EPSS
Exploits11
0day.today
0day.today
added 2009/10/30 12:0 a.m.40 views

Oracle Database 10.1.0.5 - 10.2.0.4 AUTH_SESSKEY length validation

Exploit for unknown platform in category remote exploits ========================================================================== Oracle Database 10.1.0.5 - 10.2.0.4 AUTHSESSKEY length validation exploit ========================================================================== Title: Oracle...

7.1AI score0.76361EPSS
Exploits11
Prion
Prion
added 2008/10/14 9:11 p.m.16 views

Buffer overflow

Unspecified vulnerability in the Oracle OLAP component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors...

6.5CVSS5.6AI score0.01167EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/01/17 10:0 p.m.34 views

CVE-2008-0344

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote attack vectors, aka DB07...

8.9AI score0.02625EPSS
Exploits0References9
CVE
CVE
added 2007/10/17 11:0 p.m.47 views

CVE-2007-5508

CVE-2007-5508 concerns the CTXSYS Intermedia/Oracle Text component (CTX_DOC) in Oracle Database 10.1.0.5 and 10.2.0.3. The vulnerability enables SQL injection via six procedures (THEMES, GIST, TOKENS, FILTER, HIGHLIGHT, MARKUP), with remote authenticated users able to execute arbitrary SQL comman...

6.5CVSS7.7AI score0.05158EPSS
Exploits0References12Affected Software1
Prion
Prion
added 2007/04/18 6:19 p.m.18 views

Sql injection

SQL injection vulnerability in the Upgrade/Downgrade component DBMSUPGRADEINTERNAL for Oracle Database 10.1.0.5 allows remote authenticated users to execute arbitrary SQL commands via unknown vectors, aka DB07. NOTE: as of 20070424, Oracle has not disputed reliable claims that DB07 is actually fo...

7.5CVSS8AI score0.03425EPSS
Exploits0References11Affected Software1
Prion
Prion
added 2007/04/18 6:19 p.m.26 views

Buffer overflow

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to 1 Change Data Capture CDC, aka DB08, and 2 Oracle Instant Client, aka DB11. NOTE: as of 20070424, oracle has not disputed reliable claims that thes...

9CVSS6.6AI score0.05899EPSS
Exploits0References9Affected Software1
NVD
NVD
added 2006/10/18 1:7 a.m.16 views

CVE-2006-5335

Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors related to 1 Vuln DB04 and sys.dbmscdcimpdp in the a Change Data Capture CDC component; 2 Vuln DB07, 3 DB08, and 4 DB16 in sys.dbmscdcisubscribe in CDC; and 5...

9CVSS7AI score0.02777EPSS
Exploits0References12
Rows per page
Query Builder