Database Server@10.1.0.3 Security Vulnerabilities and Issues — Database Server@10.1.0.3 CVE List

Lucene search

OracleDatabase Server10.1.0.3

12 matches found

CVE•added 2006/01/18 11:3 a.m.•61 views

CVE-2006-0256

Unspecified vulnerability in the Advanced Queuing component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.6, 10.1.0.3 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB01.

10CVSS6.2AI score0.01135EPSS

CVE•added 2007/11/08 9:46 p.m.•60 views

CVE-2007-5897

Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be covered by CVE-2007-5515...

8.5CVSS7.3AI score0.03222EPSS

CVE•added 2005/05/02 4:0 a.m.•59 views

CVE-2005-1197

SQL injection vulnerability in the SYS.DBMS_CDC_IPUBLISH.CREATE_SCN_CHANGE_SET procedure in Oracle Database Server 10g allows remote attackers to execute arbitrary SQL commands via the CHANGE_SET_NAME parameter.

7.5CVSS7.8AI score0.00899EPSS

CVE•added 2006/02/04 2:2 a.m.•55 views

CVE-2006-0547

Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privileged database accounts, via a modified AUTH_ALTER_SESSION attribute in the authentication phase of t...

7.5CVSS7.2AI score0.09005EPSS

CVE•added 2005/11/02 11:3 a.m.•54 views

CVE-2005-3445

Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05.

10CVSS9.2AI score0.02021EPSS

CVE•added 2005/05/02 4:0 a.m.•49 views

CVE-2005-0298

The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.

5CVSS6.2AI score0.00337EPSS

CVE•added 2005/11/02 11:2 a.m.•48 views

CVE-2005-3443

Unspecified vulnerability in the Spatial component in Oracle Database Server from 9i up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB17.

10CVSS6.5AI score0.03419EPSS

CVE•added 2005/11/02 11:2 a.m.•45 views

CVE-2005-3440

Unspecified vulnerability in Database Scheduler in Oracle Database Server 10g up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB08.

10CVSS6.5AI score0.0321EPSS

CVE•added 2006/10/18 1:7 a.m.•45 views

CVE-2006-5342

Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.3 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_tune, aka Vuln# DB18. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB18 m...

7.1CVSS6.6AI score0.02773EPSS

CVE•added 2005/11/02 11:2 a.m.•38 views

CVE-2005-3437

Unspecified vulnerability in the PL/SQL component in Oracle Database Server 9i up to 10.1.0.4 has unknown impact and attack vectors, aka Oracle Vuln# DB01.

10CVSS6.5AI score0.0321EPSS

CVE•added 2006/02/04 2:2 a.m.•37 views

CVE-2006-0551

SQL injection vulnerability in the Data Pump Metadata API in Oracle Database 10g and possibly earlier might allow remote attackers to execute arbitrary SQL commands via unknown vectors. NOTE: due to the lack of relevant details from the Oracle advisory, a separate CVE is being created since it cann...

7.5CVSS7.6AI score0.01489EPSS

CVE•added 2006/10/18 1:7 a.m.•34 views

CVE-2006-5343

Unspecified vulnerability in Database Scheduler component in Oracle Database 10.1.0.3 has unknown impact and remote authenticated attack vectors related to sys.dbms_scheduler, aka Vuln# DB19.

9CVSS5.7AI score0.06911EPSS