Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle application server 9.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-0563
The default configuration of Oracle 9i Application Server 1.0.2.x allows remote anonymous users to access sensitive services without authentication, including Dynamic Monitoring Services (1) dms0, (2) dms/DMSDump, (3) servlet/DMSDump, (4) servlet/Spy, (5) soap/servlet/Spy, and (6...
Oracle Application Server 1.0.2
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7 .1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server Web Cache 2.0.0.3
NA
CVE-2002-0566
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote malicious users to cause a denial of service (crash) via an HTTP Authorization header without an authentication type.
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7 .1
Oracle Oracle9i 9.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server 1.0.2
Oracle Application Server Web Cache 2.0.0.0
Oracle Oracle9i 9.0.1
NA
CVE-2002-0560
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote malicious users to obtain sensitive information via the OWA_UTIL stored procedures (1) OWA_UTIL.signature, (2) OWA_UTIL.listprint, or (3) OWA_UTIL.show_query_columns.
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle8i 8.1.7
Oracle Application Server 1.0.2
Oracle Oracle9i 9.0.1
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0
NA
CVE-2002-0561
The default configuration of the PL/SQL Gateway web administration interface in Oracle 9i Application Server 1.0.2.x uses null authentication, which allows remote malicious users to gain privileges and modify DAD settings.
Oracle Application Server 1.0.2
Oracle Application Server Web Cache 2.0.0.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Oracle8i 8.1.7 .1
Oracle Oracle9i 9.0
Oracle Application Server Web Cache 2.0.0.3
Oracle Oracle8i 8.1.7
NA
CVE-2002-0564
PL/SQL module 3.0.9.8.2 in Oracle 9i Application Server 1.0.2.x allows remote malicious users to bypass authentication for a Database Access Descriptor (DAD) by modifying the URL to reference an alternate DAD that already has valid credentials.
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Application Server 1.0.2
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Application Server Web Cache 2.0.0.2
Oracle Application Server Web Cache 2.0.0.3
Oracle Application Server Web Cache 2.0.0.0
Oracle Application Server Web Cache 2.0.0.1
NA
CVE-2002-0568
Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting (1) XSQLConfig.xml or (2) soapConfig.xml through a virtual directory.
Oracle Application Server 1.0.2
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
NA
CVE-2007-3854
Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 allow remote authenticated users to have unknown impact via (1) SYS.DBMS_PRVTAQIS in the Advanced Queuing component (DB02) and (2) MDSYS.MD in the Spatial component (DB12). NOTE: Oracle has no...
Oracle Apex 1.5.0
Oracle Apex 1.6.1
Oracle Application Server 10.1.2.2.0
Oracle Application Server 10.1.3.0.0
Oracle Database Server 10.2.0.2
Oracle Database Server 10.2.0.3
Oracle Database Server 9.0.1.5
Oracle E-business Suite 11.5.9
Oracle E-business Suite 12.0.0
Oracle Peoplesoft Enterprise Peopletools 8.47
Oracle Peoplesoft Enterprise Peopletools 8.48
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.1.0
Oracle Collaboration Suite 10.1.2
Oracle Database Server 10.1.0.5
Oracle E-business Suite 11.5.10.2
Oracle E-business Suite 11.5.8
Oracle Peoplesoft Enterprise Human Capital Management 9.0
Oracle Peoplesoft Enterprise Peopletools 8.22
Oracle Application Server 1.0.2.2
Oracle Application Server 10.1.2.0.1
Oracle Application Server 10.1.3.3.0
NA
CVE-2004-1707
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libc...
Oracle Application Server 1.0.2.2.2
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server Portal 3.0.9.8.5
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Standard 9.0.1.5
Oracle Oracle9i Standard 9.0.2
Oracle Application Server
Oracle Application Server 1.0.2
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Application Server Portal 9.0.2.3b
1 EDB exploit
NA
CVE-2009-0217
The design of the W3C XML Signature Syntax and Processing (XMLDsig) recommendation, as implemented in products including (1) the Oracle Security Developer Tools component in Oracle Application Server 10.1.2.3, 10.1.3.4, and 10.1.4.3IM; (2) the WebLogic Server component in BEA Pro...
Oracle Application Server 10.1.3.4
Oracle Application Server 10.1.2.3
Oracle Bea Product Suite 10.0
Mono Project Mono 2.0
Oracle Weblogic Server Component 10.3
Oracle Weblogic Server Component 10.0
Ibm Websphere Application Server 6.0.2.10
Ibm Websphere Application Server 6.0.2.12
Ibm Websphere Application Server 6.0.1.1
Ibm Websphere Application Server 6.0.1.13
Ibm Websphere Application Server 6.0.2.2
Ibm Websphere Application Server 6.0.2.19
Ibm Websphere Application Server 6.0.2.21
Ibm Websphere Application Server 6.0.0.2
Ibm Websphere Application Server 6.0.2.29
Ibm Websphere Application Server 6.0.2.28
Ibm Websphere Application Server 6.0.2.25
Ibm Websphere Application Server 6.1.0.20
Ibm Websphere Application Server 6.1.0.22
Ibm Websphere Application Server 6.1.0.13
Ibm Websphere Application Server 6.1.0.14
Ibm Websphere Application Server 6.1.0.3
NA
CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for malicious users to escape detection.
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Application Server 10.1.0.3.1
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.2.0.2
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Oracle9i Release 2 9.2.1
Oracle Oracle9i Release 2 9.2.2
Oracle Application Server 10.1.0.2
Oracle Application Server 10.1.0.3
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »