CVE-2026-23927

A flaw was found in Zabbix Agent 2. A user with network access to Agent 2 can inject a malicious Oracle TNS Transparent Network Substrate connection string through the 'service' parameter. This allows Agent 2 to connect to an attacker-controlled server, potentially leading to the disclosure of...

CVE-2026-23927

A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle database credentials if they are saved in a named session...

CVE-2026-23927

A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle database credentials if they are saved in a named session...

UBUNTU-CVE-2026-23927

A user able to connect to Agent 2 can inject an Oracle TNS connection string via the 'service' parameter. This can lead to Agent 2 connecting to an attacker-controlled server and leaking Oracle database credentials if they are saved in a named session...

Zabbix 安全漏洞

Zabbix is a set of open-source monitoring systems developed by Zabbix Inc. This system supports network monitoring, server monitoring, cloud monitoring, and application monitoring. Zabbix has security vulnerabilities; one of these vulnerabilities allows users who can connect to Agent 2 to inject...

Linux Distros Unpatched Vulnerability : CVE-2017-3462

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.5.54 and...

PT-2024-1219 · Oracle · Oracle Audit Vault/Database Firewall

Name of the Vulnerable Software and Affected Versions: Oracle Audit Vault and Database Firewall versions 20.1 through 20.9 Description: The issue is related to insufficient input validation in the Firewall component of Oracle Audit Vault and Database Firewall. It allows a high-privileged attacker...

Rocky Linux 9 : java-1.8.0-openjdk (RLSA-2022:7007)

The remote Rocky Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2022:7007 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are...

Oracle Network Authentication CVE-2009-1979 Remote Buffer Overflow Vulnerability

No description provided by source. include winsock2.h include stdio.h include string.h include windows.h include assert.h include string void ssend SOCKET s, char msg, DWORD size int sent; printf "ssend: begin: %d bytes\n", size; sent=send s, charmsg, size, 0; if sent==SOCKETERROR printf "send -...

Oracle Network Authentication CVE-2009-1979 Remote Buffer Overflow

Exploit for unknown platform in category remote exploits ================================================================================ Oracle Network Authentication CVE-2009-1979 Remote Buffer Overflow Vulnerability ==============================================================================...

Oracle Network Authentication组件远程代码执行漏洞

BUGTRAQ ID: 36747 CVECAN ID: CVE-2009-1979 Oracle Database是一款商业性质大型数据库系统。 远程攻击者可以通过Oracle Net协议向Oracle数据库的Network Authentication组件发送恶意报文导致执行任意代码。 Oracle Database 10.2.0.4 Oracle Database 10.1.0.5 厂商补丁： Oracle ------ Oracle已经为此发布了一个安全公告（cpuoct2009）以及相应补丁: cpuoct2009：Oracle Critical Patch Update...