Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle oracle10g enterprise 10.1.0.2 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2004-1774
Buffer overflow in the SDO_CODE_SIZE procedure of the MD2 package (MDSYS.MD2.SDO_CODE_SIZE) in Oracle 10g prior to 10.1.0.2 Patch 2 allows local users to execute arbitrary code via a long LAYER parameter.
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
1 EDB exploit
4.6
CVSSv2
CVE-2005-1496
The DBMS_Scheduler in Oracle 10g allows remote attackers with CREATE JOB privileges to gain additional privileges by changing SESSION_USER to the SYS user.
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Application Server 10.1.0.3.1
7.5
CVSSv2
CVE-2006-0586
Multiple SQL injection vulnerabilities in Oracle 10g Release 1 before CPU Jan 2006 allow remote malicious users to execute arbitrary SQL commands via multiple parameters in (1) ATTACH_JOB, (2) HAS_PRIVS, and (3) OPEN_JOB functions in the SYS.KUPV$FT package; and (4) UPDATE_JOB, (...
Oracle Oracle10g Personal 10.1.0.3
Oracle Application Server 10.1.2.0.2
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Application Server 10.1.2.1.0
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4
Oracle Application Server 10.1.2.0.1
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.5
Oracle Oracle10g Personal 10.10.3.1
Oracle Application Server 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Oracle10g Standard 10.1.0.4.2
Oracle Application Server 10.1.0.3.1
Oracle Application Server 10.1.2
Oracle Oracle10g Personal 10.1.0.4
3 EDB exploits
7.5
CVSSv2
CVE-2005-4832
SQL injection vulnerability in the Oracle Database Server 10g allows remote authenticated users to execute arbitrary SQL commands with elevated privileges via the SUBSCRIPTION_NAME parameter in the (1) SYS.DBMS_CDC_SUBSCRIBE and (2) SYS.DBMS_CDC_ISUBSCRIBE packages, a different v...
Oracle Oracle10g Standard 10.2.0.1
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle10g Personal 9.0.4.0
Oracle Oracle10g Enterprise 9.0.4.0
Oracle Oracle10g Standard 9.0.4.0
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle10g Standard 10.1.0.4
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle10g Standard 10.2.3
Oracle Oracle10g Enterprise 10.2.3
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1 .0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.5
Oracle Oracle10g Personal 10.10.3.1
4 EDB exploits
7.5
CVSSv2
CVE-2005-1495
Oracle Database 9i and 10g disables Fine Grained Audit (FGA) after the SYS user executes a SELECT statement on an FGA object, which makes it easier for malicious users to escape detection.
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2
Oracle Oracle9i Release 2 9.2.1
Oracle Application Server 10.1.0.3
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle9i 9.0
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.2.0.2
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle9i Release 2 9.2.2
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle9i 9.0.1.3
Oracle Oracle10g Personal 10.1.0.2
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle9i 9.0.1.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Application Server 10.1.0.2
Oracle Application Server 10.1.0.3.1
Oracle Oracle9i 9.0.1.4
2.1
CVSSv2
CVE-2006-1705
Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view.
Oracle Oracle10g Standard 10.2.0.1
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle9i Standard 9.2.0.3
Oracle Oracle10g Enterprise 10.1.0.3
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Standard 10.1.0.2
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.2.0.1
Oracle Oracle9i Standard 9.2
Oracle Oracle10g Standard 10.1.0.4
Oracle Oracle10g Personal 10.1.0.3.1
Oracle Oracle9i Enterprise 9.2.0
Oracle Oracle9i Standard 9.2.0.5
Oracle Oracle10g Standard 10.2.3
Oracle Oracle10g Enterprise 10.2.3
7.5
CVSSv2
CVE-2005-3641
Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote malicious users to bypass authentication by supplying a valid username.
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle9i Standard 9.0.2
Oracle Database Server 8.0.5.1
Oracle Oracle8i Standard 8.1.7.4
Oracle Oracle8i Enterprise 8.1.5.0.0
Oracle Oracle10g Standard 10.1.0.3.1
Oracle Oracle9i Standard 9.0.1.4
Oracle Database Server 8.1.7.4
Oracle Oracle8i Enterprise 8.1.6.0.0
Oracle Oracle9i Personal 8.1.7
Oracle Database Server Lite 5.0
Oracle Oracle9i Personal 9.0.4
Oracle Oracle9i Enterprise 9.0.2.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Database Server 8.1.7
Oracle Oracle8i Standard 8.1.7.1
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Database Server 8.1.5
Oracle Oracle9i Personal 9.0.1.5
9
CVSSv2
CVE-2004-1371
Stack-based buffer overflow in Oracle 9i and 10g allows remote malicious users to execute arbitrary code via a long token in the text of a wrapped procedure.
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Database Server 9i Application Server
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
7.5
CVSSv2
CVE-2004-1362
The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote malicious users to bypass access restrictions for certain procedures via an encoded URL w...
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Oracle8i Enterprise 8.1.5 .1.0
4.6
CVSSv2
CVE-2004-1365
Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Standard 9.0.2
Oracle Oracle9i Standard 9.0.1.4
Oracle Collaboration Suite Release 1
Oracle Application Server 9.0.2.1
Oracle Oracle8i Enterprise 8.1.6 .0.0
Oracle Oracle9i Personal 8.1.7
Oracle Application Server
Oracle Oracle9i Client 9.2.0.2
Oracle Application Server 9.0.2.0.0
Oracle E-business Suite 11.5.5
Oracle Oracle9i Client 9.2.0.1
Oracle Enterprise Manager 9.0.1
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.1
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.5
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle Oracle8i Enterprise 8.1.5 .1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »