Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5793
Unspecified vulnerability in Oracle MySQL Server 5.6.12 and previous versions allows remote authenticated users to affect availability via unknown vectors related to InnoDB, a different vulnerability than CVE-2013-5786.
Oracle Mysql 5.6.2
Oracle Mysql 5.6.3
Oracle Mysql 5.6.4
Oracle Mysql 5.6.11
Oracle Mysql
Oracle Mysql 5.6.9
Oracle Mysql 5.6.1
Oracle Mysql 5.6.10
Oracle Mysql 5.6.7
Oracle Mysql 5.6.8
Oracle Mysql 5.6.0
Oracle Mysql 5.6.5
Oracle Mysql 5.6.6
NA
CVE-2009-0819
sql/item_xmlfunc.cc in MySQL 5.1 prior to 5.1.32 and 6.0 prior to 6.0.10 allows remote authenticated users to cause a denial of service (crash) via "an XPath expression employing a scalar expression as a FilterExpr with ExtractValue() or UpdateXML()," which triggers an ...
Oracle Mysql 5.1.30
Mysql Mysql
Oracle Mysql 5.1.23
Mysql Mysql 5.1.23
Oracle Mysql 5.1.2
Oracle Mysql 5.1.16
Oracle Mysql 5.1.15
Oracle Mysql 6.0.4
Oracle Mysql 6.0.3
Oracle Mysql 5.1.14
Oracle Mysql 5.1.11
Oracle Mysql 5.1.1
Oracle Mysql 5.1.21
Oracle Mysql 5.1.29
Oracle Mysql 5.1.26
Oracle Mysql 5.1.18
Oracle Mysql 5.1.19
Oracle Mysql 5.1.24
Oracle Mysql 5.1.25
Mysql Mysql 6.0.9
Mysql Mysql 6.0.10-bzr
Oracle Mysql 6.0.0
1 EDB exploit
NA
CVE-2003-0222
Stack-based buffer overflow in Oracle Net Services for Oracle Database Server 9i release 2 and previous versions allows malicious users to execute arbitrary code via a "CREATE DATABASE LINK" query containing a connect string with a long USING parameter.
Oracle Database Server 7.3.3
Oracle Database Server 7.3.4
Oracle Database Server 8.0.6
Oracle Database Server 8.1.5
Oracle Database Server 8.1.6
Oracle Oracle8i 8.1.5
Oracle Oracle8i 8.1.6
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Database Server 8.0.1
Oracle Database Server 8.0.2
Oracle Database Server 8.1.7
Oracle Database Server 9.2.1
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.0.2
Oracle Database Server 8.0.3
Oracle Database Server 8.0.4
Oracle Database Server 9.2.2
Oracle Oracle8i 8.0.6
Oracle Oracle8i 8.1.7.4
NA
CVE-2004-1707
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libc...
Oracle Application Server 1.0.2.2.2
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server Portal 3.0.9.8.5
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Client 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Standard 9.0.1.5
Oracle Oracle9i Standard 9.0.2
Oracle Application Server
Oracle Application Server 1.0.2
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Application Server Portal 9.0.2.3b
1 EDB exploit
NA
CVE-2004-0638
Buffer overflow in the KSDWRTB function in the dbms_system package (dbms_system.ksdwrt) for Oracle 9i Database Server Release 2 9.2.0.3 and 9.2.0.4, 9i Release 1 9.0.1.4 and 9.0.1.5, and 8i Release 1 8.1.7.4, allows remote authorized users to execute arbitrary code via a long sec...
Oracle Oracle9i Enterprise 9.0.1.4
Oracle Oracle9i Enterprise 9.0.1.5
Oracle Oracle9i Standard 9.0.1.4
Oracle Oracle9i Standard 9.0.1.5
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Standard 9.2.0.3
Oracle Oracle9i Standard 9.2.0.4
Oracle Oracle8i Enterprise 8.1.7.4
Oracle Oracle8i Standard 8.1.7.4
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Personal 9.2.0.4
Oracle Oracle9i Personal 9.0.1.4
Oracle Oracle9i Personal 9.0.1.5
NA
CVE-2004-1339
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote malicious users to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.2.0.2
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.2.3
Oracle Oracle9i 9.2.0.1
Oracle Database Server 10.2.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.2.0.1
Oracle Oracle9i 9.0.2.1
Oracle Oracle9i 9.0.2.2
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0.2.0.0
NA
CVE-2004-1338
The triggers in Oracle 9i and 10g allow local users to gain privileges by using a sequence of partially privileged actions: using CCBKAPPLROWTRIG or EXEC_CBK_FN_DML to add arbitrary functions to the SDO_CMT_DBK_FN_TABLE and SDO_CMT_CBK_DML_TABLE, then performing a DELETE on the S...
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.2.3
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.2.0.2
Oracle Database Server 10.2.1
Oracle Oracle9i 9.0.2.0.0
Oracle Oracle9i 9.0.2.0.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2.1
Oracle Oracle9i 9.0.2.2
NA
CVE-2004-1364
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote malicious users to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Collaboration Suite Release 1
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Database Control 10.1.2
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.0
2 EDB exploits
NA
CVE-2004-1366
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.3
NA
CVE-2004-1367
Oracle 10g Database Server, when installed with a password that contains an exclamation point ("!") for the (1) DBSNMP or (2) SYSMAN user, generates an error that logs the password in the world-readable postDBCreation.log file, which could allow local users to obtain th...
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
Oracle Enterprise Manager 9.0.1
Oracle Enterprise Manager Database Control 10.1.2
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.1.7 .0.0
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Standard 8.1.7 .0.0
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Personal 9.0.1.4
Oracle Oracle9i Personal 9.0.1.5
Oracle Application Server 9.0.2.2
Oracle Application Server 9.0.2.3
Oracle E-business Suite 11.5.1
Oracle E-business Suite 11.5.2
Oracle E-business Suite 11.5.9
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »