Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle oracle9i 9.0.1 vulnerabilities and exploits
(subscribe to this query)
187
VMScore
CVE-2002-0568
Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting (1) XSQLConfig.xml or (2) soapConfig.xml through a virtual directory.
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Oracle Application Server 1.0.2
435
VMScore
CVE-2005-3204
Cross-site scripting (XSS) vulnerability in Oracle XML DB 9iR2 allows remote malicious users to inject arbitrary web script or HTML via the query string in an HTTP request.
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Application Server 9.0.2.1
Oracle Oracle9i Personal 9.0.4
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Standard 9.0.1
Oracle Oracle9i Standard 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.0
Oracle Application Server 9.0.2.3
Oracle Oracle9i Standard 9.0.1.5 Fips
Oracle Oracle9i Enterprise 9.0.1.5 Fips
1 EDB exploit
890
VMScore
CVE-2003-0095
Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote malicious users to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demons...
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0
Oracle Database Server 9.2.1
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.1.2
Oracle Database Server 9.2.2
Oracle Database Server 8.0.6
802
VMScore
CVE-2003-0096
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote malicious users to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or...
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0
Oracle Database Server 9.2.1
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.1.2
Oracle Database Server 9.2.2
Oracle Database Server 8.0.6
445
VMScore
CVE-2002-1118
TNS Listener in Oracle Net Services for Oracle 9i 9.2.x and 9.0.x, and Oracle 8i 8.1.x, allows remote malicious users to cause a denial of service (hang or crash) via a SERVICE_CURLOAD command.
Oracle Oracle8i 8.1.5.1.0 Enterprise
Oracle Oracle8i 8.1.7.0.0 Enterprise
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle9i Release 2 9.2.1
Oracle Oracle8i 8.1.5.0.0 Enterprise
Oracle Oracle9i 9.0
Oracle Oracle8i 8.1.6
Oracle Oracle9i Release 2 9.2.2
Oracle Oracle8i 8.1.7.1
Oracle Oracle8i 8.1.7
Oracle Oracle9i 9.0.1.2
Oracle Oracle8i 8.1.6.1.0 Enterprise
Oracle Oracle8i 8.1.5
Oracle Oracle8i 8.1.7.1.0 Enterprise
Oracle Oracle8i 8.1.6.0.0 Enterprise
Oracle Oracle8i 8.1.5.0.2 Enterprise
Oracle Oracle9i 9.0.1 3
668
VMScore
CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for malicious users to escape detection.
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle9i Release 2 9.2.1
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle9i 9.0
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.2.0.2
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle9i Release 2 9.2.2
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle9i 9.0.1.3
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle9i 9.0.1.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Application Server 10.1.0.3.1
Oracle Oracle9i 9.0.1.4
725
VMScore
CVE-2004-1707
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libc...
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Database Server Lite 5.0
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Standard 9.0.1
Oracle Oracle9i Standard 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Application Server Portal 9.0.2.3b
Oracle Oracle9i Enterprise 9.2.0.4
1 EDB exploit
801
VMScore
CVE-2004-1371
Stack-based buffer overflow in Oracle 9i and 10g allows remote malicious users to execute arbitrary code via a long token in the text of a wrapped procedure.
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Database Server 9i Application Server
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
668
VMScore
CVE-2004-1362
The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote malicious users to bypass access restrictions for certain procedures via an encoded URL w...
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Oracle8i Enterprise 8.1.5 .1.0
409
VMScore
CVE-2004-1365
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Oracle8i Enterprise 8.1.5 .1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »