Database Server@10.1.0.2 Security Vulnerabilities and Issues — Database Server@10.1.0.2 CVE List

Lucene search

OracleDatabase Server10.1.0.2

5 matches found

CVE•added 2005/01/19 5:0 a.m.•79 views

CVE-2004-1363

Buffer overflow in extproc in Oracle 10g allows remote attackers to execute arbitrary code via environment variables in the library name, which are expanded after the length check is performed.

9.8CVSS9.7AI score0.27664EPSS

CVE•added 2007/11/08 9:46 p.m.•60 views

CVE-2007-5897

Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be covered by CVE-2007-5515...

8.5CVSS7.3AI score0.03222EPSS

CVE•added 2005/05/02 4:0 a.m.•59 views

CVE-2005-1197

SQL injection vulnerability in the SYS.DBMS_CDC_IPUBLISH.CREATE_SCN_CHANGE_SET procedure in Oracle Database Server 10g allows remote attackers to execute arbitrary SQL commands via the CHANGE_SET_NAME parameter.

7.5CVSS7.8AI score0.00899EPSS

CVE•added 2007/04/18 6:19 p.m.•56 views

CVE-2007-2130

Unspecified vulnerability in Workflow Cartridge, as used in Oracle Database Server 9.2.0.1, 10.1.0.2, and 10.2.0.1; Application Server 9.0.4.3 and 10.1.2.0.2; Collaboration Suite 10.1.2; and E-Business Suite; has unknown impact and remote authenticated attack vectors, aka OWF01.

9CVSS8.7AI score0.0208EPSS

CVE•added 2005/05/02 4:0 a.m.•49 views

CVE-2005-0298

The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.

5CVSS6.2AI score0.00337EPSS