Oracle10g Security Vulnerabilities and Issues — Oracle10g CVE List

Lucene search

OracleOracle10g

8 matches found

CVE•added 2006/02/08 1:2 a.m.•78 views

CVE-2006-0586

Multiple SQL injection vulnerabilities in Oracle 10g Release 1 before CPU Jan 2006 allow remote attackers to execute arbitrary SQL commands via multiple parameters in (1) ATTACH_JOB, (2) HAS_PRIVS, and (3) OPEN_JOB functions in the SYS.KUPV$FT package; and (4) UPDATE_JOB, (5) ACTIVE_JOB, (6) ATTACH...

7.5CVSS9.8AI score0.30903EPSS

CVE•added 2006/02/04 11:2 a.m.•60 views

CVE-2006-0552

Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11.

7.5CVSS9.2AI score0.04381EPSS

CVE•added 2006/12/23 1:28 a.m.•59 views

CVE-2006-6703

Multiple cross-site scripting (XSS) vulnerabilities in Oracle Portal 9i and 10g allow remote attackers to inject arbitrary JavaScript via the tc parameter in webapp/jsp/container_tabs.jsp, and other unspecified vectors.

6.8CVSS5.9AI score0.11599EPSS

CVE•added 2006/01/18 11:3 a.m.•54 views

CVE-2006-0262

Unspecified vulnerability in the Net Foundation Layer component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.6, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB08.

10CVSS6.3AI score0.01809EPSS

CVE•added 2006/01/18 11:3 a.m.•53 views

CVE-2006-0271

Unspecified vulnerability in the Upgrade & Downgrade component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB28. NOTE: details are unavailable from Oracle, but they have not publicly disputed a claim by a...

10CVSS7.2AI score0.0139EPSS

CVE•added 2006/04/11 10:2 a.m.•44 views

CVE-2006-1705

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.

2.1CVSS6AI score0.01109EPSS

CVE•added 2006/01/18 11:3 a.m.•43 views

CVE-2006-0272

Unspecified vulnerability in the XML Database component of Oracle Database server 9.2.0.7 and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB29. NOTE: based on mutual credits by the relevant sources, it is highly likely that this issue is a buffer overflow in th...

9CVSS6.6AI score0.39742EPSS

CVE•added 2006/01/18 11:3 a.m.•31 views

CVE-2006-0269

Unspecified vulnerability in the Streams Capture component of Oracle Database server 10.1.0.5 and 10.2.0.1 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB25. NOTE: details are unavailable from Oracle, but they have not publicly disputed a claim by a reliable independent ...

5.5CVSS7.3AI score0.00688EPSS