Oracle10g@standard 10.1.0.4 Security Vulnerabilities and Issues — Oracle10g@standard 10.1.0.4 CVE List

Lucene search

OracleOracle10gstandard 10.1.0.4

8 matches found

CVE•added 2006/02/08 1:2 a.m.•78 views

CVE-2006-0586

Multiple SQL injection vulnerabilities in Oracle 10g Release 1 before CPU Jan 2006 allow remote attackers to execute arbitrary SQL commands via multiple parameters in (1) ATTACH_JOB, (2) HAS_PRIVS, and (3) OPEN_JOB functions in the SYS.KUPV$FT package; and (4) UPDATE_JOB, (5) ACTIVE_JOB, (6) ATTACH...

7.5CVSS9.8AI score0.30903EPSS

CVE•added 2006/02/04 11:2 a.m.•60 views

CVE-2006-0552

Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11.

7.5CVSS9.2AI score0.04381EPSS

CVE•added 2006/01/18 11:3 a.m.•54 views

CVE-2006-0262

Unspecified vulnerability in the Net Foundation Layer component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.6, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB08.

10CVSS6.3AI score0.01809EPSS

CVE•added 2006/01/18 11:3 a.m.•53 views

CVE-2006-0271

Unspecified vulnerability in the Upgrade & Downgrade component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB28. NOTE: details are unavailable from Oracle, but they have not publicly disputed a claim by a...

10CVSS7.2AI score0.0139EPSS

CVE•added 2005/11/16 9:22 p.m.•46 views

CVE-2005-3641

Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication by supplying a valid username.

7.5CVSS7.1AI score0.00482EPSS

CVE•added 2006/04/11 10:2 a.m.•44 views

CVE-2006-1705

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.

2.1CVSS6AI score0.01109EPSS

CVE•added 2006/01/18 11:3 a.m.•43 views

CVE-2006-0272

Unspecified vulnerability in the XML Database component of Oracle Database server 9.2.0.7 and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB29. NOTE: based on mutual credits by the relevant sources, it is highly likely that this issue is a buffer overflow in th...

9CVSS6.6AI score0.39742EPSS

CVE•added 2007/03/03 8:0 p.m.•39 views

CVE-2005-4832

SQL injection vulnerability in the Oracle Database Server 10g allows remote authenticated users to execute arbitrary SQL commands with elevated privileges via the SUBSCRIPTION_NAME parameter in the (1) SYS.DBMS_CDC_SUBSCRIBE and (2) SYS.DBMS_CDC_ISUBSCRIBE packages, a different vector than CVE-2005...

7.5CVSS7.6AI score0.52586EPSS