Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

oracle oracle9i 9.0.2 vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2002-0965
Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file.
Oracle Oracle9i 9.0.2Oracle Oracle9i 9.0Oracle Oracle9i 9.0.1
NA
CVE-2002-1264
Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote malicious users to execute arbitrary code via a long USERID parameter in the isqlplus URL.
Oracle Oracle9i 9.0.1Oracle Oracle9i Release 2 9.2.1Oracle Oracle9i Release 2 9.2.2Oracle Oracle9i 9.0.1.3Oracle Oracle9i 9.0.2Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0
NA
CVE-2002-0856
SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote malicious users to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.
Oracle Database Server 9.2.1Oracle Oracle9i 9.0Oracle Oracle9i 9.0.1Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0.2Oracle Oracle9i 9.0.1.3
NA
CVE-2004-1339
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote malicious users to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.
Oracle Oracle9i 9.0.1.3Oracle Oracle9i 9.0.1.4Oracle Oracle9i 9.2.0.2Oracle Oracle9i 9.0.1Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0.2.3Oracle Oracle9i 9.2.0.1Oracle Database Server 10.2.1Oracle Oracle9i 9.0Oracle Oracle9i 9.0.2.0.1Oracle Oracle9i 9.0.2.1Oracle Oracle9i 9.0.2.2Oracle Oracle9i 9.0.2Oracle Oracle9i 9.0.2.0.0
NA
CVE-2004-1338
The triggers in Oracle 9i and 10g allow local users to gain privileges by using a sequence of partially privileged actions: using CCBKAPPLROWTRIG or EXEC_CBK_FN_DML to add arbitrary functions to the SDO_CMT_DBK_FN_TABLE and SDO_CMT_CBK_DML_TABLE, then performing a DELETE on the S...
Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0.1.3Oracle Oracle9i 9.0.2.3Oracle Oracle9i 9.2.0.1Oracle Oracle9i 9.0.1.4Oracle Oracle9i 9.0.2Oracle Oracle9i 9.2.0.2Oracle Database Server 10.2.1Oracle Oracle9i 9.0.2.0.0Oracle Oracle9i 9.0.2.0.1Oracle Oracle9i 9.0Oracle Oracle9i 9.0.1Oracle Oracle9i 9.0.2.1Oracle Oracle9i 9.0.2.2
NA
CVE-2003-0095
Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote malicious users to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demons...
Oracle Oracle9i 9.0.1Oracle Oracle9i 9.0.1.2Oracle Database Server 8.0.6Oracle Database Server 9.2.1Oracle Oracle9i 9.0.1.3Oracle Oracle9i 9.0.2Oracle Database Server 9.2.2Oracle Oracle8i 8.1.7Oracle Oracle8i 8.1.7.1Oracle Oracle9i 9.0
NA
CVE-2003-0096
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote malicious users to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or...
Oracle Oracle8i 8.1.7Oracle Oracle8i 8.1.7.1Oracle Oracle9i 9.0Oracle Oracle9i 9.0.1Oracle Database Server 8.0.6Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0.1.3Oracle Database Server 9.2.1Oracle Database Server 9.2.2Oracle Oracle9i 9.0.2
NA
CVE-2003-1193
Multiple SQL injection vulnerabilities in the Portal DB (1) List of Values (LOVs), (2) Forms, (3) Hierarchy, and (4) XML components packages in Oracle Oracle9i Application Server 9.0.2.00 up to and including 3.0.9.8.5 allow remote malicious users to execute arbitrary SQL commands...
Oracle Application Server Portal 3.0.9.8.5Oracle Application Server Portal 9.0.2.3Oracle Oracle9i 9.0.2.2Oracle Oracle9i 9.0.2.3Oracle Application Server Portal 9.0.2.3aOracle Application Server Portal 9.0.2.3bOracle Oracle9i 9.0.2Oracle Oracle9i 9.0.2.0.0Oracle Oracle9i 9.0.2.0.1Oracle Oracle9i 9.0.2.1
NA
CVE-2002-1118
TNS Listener in Oracle Net Services for Oracle 9i 9.2.x and 9.0.x, and Oracle 8i 8.1.x, allows remote malicious users to cause a denial of service (hang or crash) via a SERVICE_CURLOAD command.
Oracle Oracle8i 8.1.7Oracle Oracle8i 8.1.7.0.0 EnterpriseOracle Oracle8i 8.1.7.1Oracle Oracle8i 8.1.7.1.0 EnterpriseOracle Oracle8i 8.1.5Oracle Oracle8i 8.1.5.0.0 EnterpriseOracle Oracle8i 8.1.5.0.2 EnterpriseOracle Oracle9i 9.0.2Oracle Oracle9i Release 2 9.2.1Oracle Oracle9i Release 2 9.2.2Oracle Oracle8i 8.1.6Oracle Oracle8i 8.1.6.1.0 EnterpriseOracle Oracle9i 9.0Oracle Oracle9i 9.0.1.2Oracle Oracle8i 8.1.5.1.0 EnterpriseOracle Oracle8i 8.1.6.0.0 EnterpriseOracle Oracle9i 9.0.1Oracle Oracle9i 9.0.1 3
NA
CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for malicious users to escape detection.
Oracle Oracle10g Personal 10.1.0.2Oracle Oracle10g Personal 10.1.0.3Oracle Oracle9i 9.0.1.2Oracle Oracle9i 9.0.1.3Oracle Application Server 10.1.0.3.1Oracle Oracle10g Enterprise 10.1.0.2Oracle Oracle10g Standard 10.1.0.3Oracle Oracle10g Standard 10.1.0.3.1Oracle Oracle9i 9.2.0.1Oracle Oracle9i 9.2.0.2Oracle Oracle10g Enterprise 10.1.0.3Oracle Oracle10g Enterprise 10.1.0.3.1Oracle Oracle9i 9.0Oracle Oracle9i 9.0.1Oracle Oracle9i Release 2 9.2.1Oracle Oracle9i Release 2 9.2.2Oracle Application Server 10.1.0.2Oracle Application Server 10.1.0.3Oracle Oracle10g Personal 10.1.0.3.1Oracle Oracle10g Standard 10.1.0.2Oracle Oracle9i 9.0.1.4Oracle Oracle9i 9.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook