Database Server@9.2.0.6 Security Vulnerabilities and Issues — Database Server@9.2.0.6 CVE List

Lucene search

OracleDatabase Server9.2.0.6

19 matches found

CVE•added 2006/04/20 10:2 a.m.•93 views

CVE-2006-1884

Unspecified vulnerability in the Oracle Thesaurus Management System component in Oracle E-Business Suite and OPA 4.5.2 Applications has unknown impact and attack vectors, aka Vuln# OPA01.

10CVSS8.9AI score0.01323EPSS

CVE•added 2006/01/18 11:3 a.m.•61 views

CVE-2006-0256

Unspecified vulnerability in the Advanced Queuing component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.6, 10.1.0.3 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB01.

10CVSS6.2AI score0.01135EPSS

CVE•added 2007/11/08 9:46 p.m.•60 views

CVE-2007-5897

Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be covered by CVE-2007-5515...

8.5CVSS7.3AI score0.03222EPSS

CVE•added 2006/02/04 2:2 a.m.•55 views

CVE-2006-0547

Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privileged database accounts, via a modified AUTH_ALTER_SESSION attribute in the authentication phase of t...

7.5CVSS7.2AI score0.09005EPSS

CVE•added 2005/11/02 11:3 a.m.•54 views

CVE-2005-3445

Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05.

10CVSS9.2AI score0.02021EPSS

CVE•added 2006/07/21 2:3 p.m.•51 views

CVE-2006-3700

Multiple unspecified vulnerabilities in Oracle Database 9.2.0.6 and 10.1.0.4 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 for Web Distributed Authoring and Versioning (DAV) and (2) DB23 for XMLDB.

10CVSS6.6AI score0.02902EPSS

CVE•added 2005/05/02 4:0 a.m.•49 views

CVE-2005-0298

The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive information.

5CVSS6.2AI score0.00337EPSS

CVE•added 2005/11/02 11:2 a.m.•48 views

CVE-2005-3443

Unspecified vulnerability in the Spatial component in Oracle Database Server from 9i up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB17.

10CVSS6.5AI score0.03419EPSS

CVE•added 2006/10/18 1:7 a.m.•48 views

CVE-2006-5332

Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for Oracle Database 9.2.0.6 and 10.1.0.4 has unknown impact and remote authenticated attack vectors, aka Vuln# DB01. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB01 is for PL/SQL injection ...

9CVSS6.4AI score0.05101EPSS

CVE•added 2005/11/02 11:3 a.m.•46 views

CVE-2005-3446

Unspecified vulnerability in Internet Directory in Oracle Database Server 9i up to 9.2.0.6 and Application Server 9.0.2.3 up to 10.1.2.0 has unknown impact and attack vectors, aka Oracle Vuln# DB32 and AS06.

10CVSS9AI score0.02049EPSS

CVE•added 2006/01/18 11:3 a.m.•46 views

CVE-2006-0267

Unspecified vulnerability in the Query Optimizer component of Oracle Database server 9.2.0.6 and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB20.

9CVSS6.3AI score0.01326EPSS

CVE•added 2006/10/18 1:7 a.m.•45 views

CVE-2006-5342

Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.3 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_tune, aka Vuln# DB18. NOTE: as of 20061023, Oracle has not disputed reports from reliable third parties that DB18 m...

7.1CVSS6.6AI score0.02773EPSS

CVE•added 2006/04/20 10:2 a.m.•42 views

CVE-2006-1874

Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors in the Oracle Spatial component, aka Vuln# DB09. NOTE: Oracle has not disputed reliable claims that this issue is SQL injection in MDSYS.PRVT_IDX using the (1) EXECUTE_INSERT, (2)...

7.5CVSS6.9AI score0.01499EPSS

CVE•added 2006/04/20 10:2 a.m.•40 views

CVE-2006-1867

Unspecified vulnerability in Oracle Database Server 9.2.0.6 has unknown impact and attack vectors in the Advanced Replication component, aka Vuln# DB02.

10CVSS6AI score0.02432EPSS

CVE•added 2006/07/21 2:3 p.m.•38 views

CVE-2006-3699

Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5 and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB02.

9CVSS6.2AI score0.02251EPSS

CVE•added 2006/07/21 2:3 p.m.•38 views

CVE-2006-3701

Unspecified vulnerability in the Dictionary component in Oracle Database 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors, aka Oracle Vuln# DB05.

9CVSS6.2AI score0.0199EPSS

CVE•added 2005/11/02 11:2 a.m.•36 views

CVE-2005-3444

Multiple unspecified vulnerabilities in the Programmatic Interface in Oracle Database Server from 8i up to 9.2.0.5 have unknown impact and attack vectors, aka Oracle Vuln# DB26.

10CVSS6.8AI score0.02049EPSS

CVE•added 2006/01/18 11:3 a.m.•36 views

CVE-2006-0268

Unspecified vulnerability in the Security component of Oracle Database server 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.6, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB21.

9CVSS6.3AI score0.01326EPSS

CVE•added 2006/07/21 2:3 p.m.•36 views

CVE-2006-3703

Unspecified vulnerability in InterMedia for Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.4 has unknown impact and attack vectors, aka oracle Vuln# DB07.

9CVSS6.4AI score0.0199EPSS