Oracle9i Security Vulnerabilities and Issues — Oracle9i CVE List

Lucene search

OracleOracle9i

52 matches found

CVE•added 2004/09/01 4:0 a.m.•131 views

CVE-2002-0840

Cross-site scripting (XSS) vulnerability in the default error page of Apache 2.0 before 2.0.43, and 1.3.x up to 1.3.26, when UseCanonicalName is "Off" and support for wildcard DNS is present, allows remote attackers to execute script as other web page visitors via the Host: header, a different vuln...

6.8CVSS8.4AI score0.91802EPSS

CVE•added 2002/07/03 4:0 a.m.•128 views

CVE-2002-0562

The default configuration of Oracle 9i Application Server 1.0.2.x running Oracle JSP or SQLJSP stores globals.jsa under the web root, which allows remote attackers to gain sensitive information including usernames and passwords via a direct HTTP request to globals.jsa.

5CVSS9.1AI score0.02916EPSS

CVE•added 2003/04/02 5:0 a.m.•125 views

CVE-2002-0965

Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file.

7.5CVSS7.2AI score0.75861EPSS

CVE•added 2002/07/03 4:0 a.m.•117 views

CVE-2002-0561

The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote attackers to gain privileges and modify DAD settings.

7.5CVSS9.1AI score0.06961EPSS

CVE•added 2002/07/03 4:0 a.m.•105 views

CVE-2002-0563

The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6) dms/AggreSpy; and...

5CVSS9AI score0.30847EPSS

CVE•added 2002/07/03 4:0 a.m.•96 views

CVE-2002-0560

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to obtain sensitive information via the OWA_UTIL stored procedures (1) OWA_UTIL.signature, (2) OWA_UTIL.listprint, or (3) OWA_UTIL.show_query_columns.

5CVSS8.6AI score0.07505EPSS

CVE•added 2005/01/19 5:0 a.m.•88 views

CVE-2004-1371

Stack-based buffer overflow in Oracle 9i and 10g allows remote attackers to execute arbitrary code via a long token in the text of a wrapped procedure.

9CVSS9.6AI score0.32439EPSS

CVE•added 2002/07/03 4:0 a.m.•70 views

CVE-2002-0568

Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting (1) XSQLConfig.xml or (2) soapConfig.xml through a virtual directory.

2.1CVSS8.4AI score0.04804EPSS

CVE•added 2005/01/19 5:0 a.m.•66 views

CVE-2004-1369

The TNS Listener in Oracle 10g allows remote attackers to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset for a pointer that references incorrect memory.

5CVSS8.9AI score0.03775EPSS

CVE•added 2005/01/19 5:0 a.m.•60 views

CVE-2004-1364

Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote attackers to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.

8.5CVSS9.1AI score0.15168EPSS

CVE•added 2006/02/04 11:2 a.m.•60 views

CVE-2006-0552

Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11.

7.5CVSS9.2AI score0.04381EPSS

CVE•added 2005/01/19 5:0 a.m.•59 views

CVE-2004-1366

Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.

4.6CVSS9.1AI score0.00295EPSS

CVE•added 2006/12/23 1:28 a.m.•59 views

CVE-2006-6703

Multiple cross-site scripting (XSS) vulnerabilities in Oracle Portal 9i and 10g allow remote attackers to inject arbitrary JavaScript via the tc parameter in webapp/jsp/container_tabs.jsp, and other unspecified vectors.

6.8CVSS5.9AI score0.11599EPSS

CVE•added 2003/04/02 5:0 a.m.•58 views

CVE-2002-0567

Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.

7.5CVSS7.5AI score0.01758EPSS

CVE•added 2005/01/19 5:0 a.m.•57 views

CVE-2004-1367

Oracle 10g Database Server, when installed with a password that contains an exclamation point ("!") for the (1) DBSNMP or (2) SYSMAN user, generates an error that logs the password in the world-readable postDBCreation.log file, which could allow local users to obtain that password and use it agains...

4.4CVSS9AI score0.00376EPSS

CVE•added 2005/01/19 5:0 a.m.•55 views

CVE-2004-1368

ISQL*Plus in Oracle 10g Application Server allows remote attackers to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.

7.8CVSS9.4AI score0.05303EPSS

CVE•added 2005/01/19 5:0 a.m.•55 views

CVE-2004-1370

Multiple SQL injection vulnerabilities in PL/SQL procedures that run with definer rights in Oracle 9i and 10g allow remote attackers to execute arbitrary SQL commands and gain privileges via (1) DBMS_EXPORT_EXTENSION, (2) WK_ACL.GET_ACL, (3) WK_ACL.STORE_ACL, (4) WK_ADM.COMPLETE_ACL_SNAPSHOT, (5) W...

7.5CVSS10AI score0.01812EPSS

CVE•added 2002/07/03 4:0 a.m.•54 views

CVE-2002-0559

Buffer overflows in PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allow remote attackers to cause a denial of service or execute arbitrary code via (1) a long help page request without a dadname, which overflows the resulting HTTP Location header, (2) a long HTTP request to the pl...

7.5CVSS9.4AI score0.26406EPSS

CVE•added 2004/09/01 4:0 a.m.•54 views

CVE-2003-0095

Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demonstrated using LOADPSP.

10CVSS8.1AI score0.43508EPSS

CVE•added 2005/04/14 4:0 a.m.•54 views

CVE-2004-0637

Oracle Database Server 8.1.7.4 through 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.

6.5CVSS9AI score0.19334EPSS

CVE•added 2005/01/19 5:0 a.m.•54 views

CVE-2004-1365

Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.

4.6CVSS9.2AI score0.00399EPSS

CVE•added 2006/01/18 11:3 a.m.•54 views

CVE-2006-0262

Unspecified vulnerability in the Net Foundation Layer component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.6, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB08.

10CVSS6.3AI score0.01809EPSS

CVE•added 2005/01/19 5:0 a.m.•53 views

CVE-2004-1362

The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote attackers to bypass access restrictions for certain procedures via an encoded URL with "%FF" encoded sequenc...

7.5CVSS9.2AI score0.04002EPSS

CVE•added 2006/01/18 11:3 a.m.•53 views

CVE-2006-0271

Unspecified vulnerability in the Upgrade & Downgrade component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.7, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB28. NOTE: details are unavailable from Oracle, but they have not publicly disputed a claim by a...

10CVSS7.2AI score0.0139EPSS

CVE•added 2005/02/26 5:0 a.m.•52 views

CVE-2004-1707

The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.

7.2CVSS9.2AI score0.12298EPSS

CVE•added 2003/05/12 4:0 a.m.•51 views

CVE-2003-0222

Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and earlier allows attackers to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter.

9CVSS7.6AI score0.1251EPSS

CVE•added 2002/03/09 5:0 a.m.•49 views

CVE-2001-0513

Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the redirected port.

5CVSS6.4AI score0.00902EPSS

CVE•added 2001/07/27 4:0 a.m.•49 views

CVE-2001-0516

Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data.

5CVSS6.4AI score0.00542EPSS

CVE•added 2003/11/17 5:0 a.m.•48 views

CVE-2003-0894

Buffer overflow in the (1) oracle and (2) oracleO programs in Oracle 9i Database 9.0.x and 9.2.x before 9.2.0.4 allows local users to execute arbitrary code via a long command line argument.

4.6CVSS7.1AI score0.00124EPSS

CVE•added 2005/05/10 4:0 a.m.•48 views

CVE-2003-1193

Multiple SQL injection vulnerabilities in the Portal DB (1) List of Values (LOVs), (2) Forms, (3) Hierarchy, and (4) XML components packages in Oracle Oracle9i Application Server 9.0.2.00 through 3.0.9.8.5 allow remote attackers to execute arbitrary SQL commands via the URL.

7.5CVSS8.1AI score0.00425EPSS

CVE•added 2005/01/19 5:0 a.m.•48 views

CVE-2004-0638

Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long second argument.

8.5CVSS9.7AI score0.17247EPSS

CVE•added 2003/03/03 5:0 a.m.•47 views

CVE-2003-0096

Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote attackers to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or (3) a long DIRECTORY par...

9CVSS7.8AI score0.46317EPSS

CVE•added 2005/11/16 9:22 p.m.•46 views

CVE-2005-3641

Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote attackers to bypass authentication by supplying a valid username.

7.5CVSS7.1AI score0.00482EPSS

CVE•added 2002/07/03 4:0 a.m.•45 views

CVE-2002-0564

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.

7.5CVSS9.2AI score0.0152EPSS

CVE•added 2005/01/06 5:0 a.m.•45 views

CVE-2004-1338

The triggers in Oracle 9i and 10g allow local users to gain privileges by using a sequence of partially privileged actions: using CCBKAPPLROWTRIG or EXEC_CBK_FN_DML to add arbitrary functions to the SDO_CMT_DBK_FN_TABLE and SDO_CMT_CBK_DML_TABLE, then performing a DELETE on the SDO_TXN_IDX_INSERTS ...

6.5CVSS6.9AI score0.00303EPSS

CVE•added 2002/03/09 5:0 a.m.•44 views

CVE-2001-0518

Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the listener to hang.

5CVSS6.4AI score0.00391EPSS

CVE•added 2002/07/03 4:0 a.m.•44 views

CVE-2002-0566

PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote attackers to cause a denial of service (crash) via an HTTP Authorization header without an authentication type.

5CVSS8.8AI score0.01547EPSS

CVE•added 2005/10/14 10:2 a.m.•44 views

CVE-2005-3204

Cross-site scripting (XSS) vulnerability in Oracle XML DB 9iR2 allows remote attackers to inject arbitrary web script or HTML via the query string in an HTTP request.

4.3CVSS7.4AI score0.37894EPSS

CVE•added 2006/04/11 10:2 a.m.•44 views

CVE-2006-1705

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.

2.1CVSS6AI score0.01109EPSS

CVE•added 2005/01/06 5:0 a.m.•43 views

CVE-2004-1339

SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote attackers to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.

6.5CVSS8.3AI score0.00487EPSS

CVE•added 2005/05/11 4:0 a.m.•43 views

CVE-2005-1495

Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for attackers to escape detection.

7.5CVSS9.2AI score0.01038EPSS

CVE•added 2006/01/18 11:3 a.m.•43 views

CVE-2006-0272

Unspecified vulnerability in the XML Database component of Oracle Database server 9.2.0.7 and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB29. NOTE: based on mutual credits by the relevant sources, it is highly likely that this issue is a buffer overflow in th...

9CVSS6.6AI score0.39742EPSS

CVE•added 2002/08/12 4:0 a.m.•42 views

CVE-2002-0509

Transparent Network Substrate (TNS) Listener in Oracle 9i 9.0.1.1 allows remote attackers to cause a denial of service (CPU consumption) via a single malformed TCP packet to port 1521.

5CVSS6.5AI score0.00864EPSS

CVE•added 2002/07/03 4:0 a.m.•42 views

CVE-2002-0565

Oracle 9iAS 1.0.2.x compiles JSP files in the _pages directory with world-readable permissions under the web root, which allows remote attackers to obtain sensitive information derived from the JSP code, including usernames and passwords, via a direct HTTP request to _pages.

5CVSS8.8AI score0.05915EPSS

CVE•added 2004/09/01 4:0 a.m.•42 views

CVE-2002-1118

TNS Listener in Oracle Net Services for Oracle 9i 9.2.x and 9.0.x, and Oracle 8i 8.1.x, allows remote attackers to cause a denial of service (hang or crash) via a SERVICE_CURLOAD command.

5CVSS6.3AI score0.01594EPSS

CVE•added 2005/05/19 4:0 a.m.•41 views

CVE-2003-1208

Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FROM_TZ functions.

10CVSS7.1AI score0.08383EPSS

CVE•added 2004/09/01 4:0 a.m.•38 views

CVE-2002-1264

Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote attackers to execute arbitrary code via a long USERID parameter in the isqlplus URL.

7.5CVSS7.8AI score0.06645EPSS

CVE•added 2003/08/27 4:0 a.m.•38 views

CVE-2003-0634

Stack-based buffer overflow in the PL/SQL EXTPROC functionality for Oracle9i Database Release 2 and 1, and Oracle 8i, allows authenticated database users, and arbitrary database users in some cases, to execute arbitrary code via a long library name.

7.5CVSS7.9AI score0.0265EPSS

CVE•added 2002/09/05 4:0 a.m.•37 views

CVE-2002-0858

catsnmp in Oracle 9i and 8i is installed with a dbsnmp user with a default dbsnmp password, which allows attackers to perform restricted database operations and possibly gain other privileges.

7.5CVSS6.8AI score0.00398EPSS

CVE•added 2005/07/17 4:0 a.m.•37 views

CVE-2004-2244

The XML parser in Oracle 9i Application Server Release 2 9.0.3.0 and 9.0.3.1, 9.0.2.3 and earlier, and Release 1 1.0.2.2 and 1.0.2.2.2, and Database Server Release 2 9.2.0.1 and later, allows remote attackers to cause a denial of service (CPU and memory consumption) via a SOAP message containing a ...

5CVSS8.5AI score0.00847EPSS

Total number of security vulnerabilities52