Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle oracle9i 9.0 vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2002-1264
Buffer overflow in Oracle iSQL*Plus web application of the Oracle 9 database server allows remote malicious users to execute arbitrary code via a long USERID parameter in the isqlplus URL.
Oracle Oracle9i 9.0.1
Oracle Oracle9i Release 2 9.2.1
Oracle Oracle9i Release 2 9.2.2
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0
755
VMScore
CVE-2002-0965
Buffer overflow in TNS Listener for Oracle 9i Database Server on Windows systems, and Oracle 8 on VM, allows local users to execute arbitrary code via a long SERVICE_NAME parameter, which is not properly handled when writing an error message to a log file.
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
1 EDB exploit
445
VMScore
CVE-2002-0856
SQL*NET listener for Oracle Net Oracle9i 9.0.x and 9.2 allows remote malicious users to cause a denial of service (crash) via certain debug requests that are not properly handled by the debugging feature.
Oracle Database Server 9.2.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0.1.3
445
VMScore
CVE-2002-0509
Transparent Network Substrate (TNS) Listener in Oracle 9i 9.0.1.1 allows remote malicious users to cause a denial of service (CPU consumption) via a single malformed TCP packet to port 1521.
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
668
VMScore
CVE-2002-0571
Oracle Oracle9i database server 9.0.1.x allows local users to access restricted data via a SQL query using ANSI outer join syntax.
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
578
VMScore
CVE-2004-1338
The triggers in Oracle 9i and 10g allow local users to gain privileges by using a sequence of partially privileged actions: using CCBKAPPLROWTRIG or EXEC_CBK_FN_DML to add arbitrary functions to the SDO_CMT_DBK_FN_TABLE and SDO_CMT_CBK_DML_TABLE, then performing a DELETE on the S...
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.2.3
Oracle Oracle9i 9.2.0.1
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.2.0.2
Oracle Database Server 10.2.1
Oracle Oracle9i 9.0.2.0.0
Oracle Oracle9i 9.0.2.0.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.2.1
Oracle Oracle9i 9.0.2.2
578
VMScore
CVE-2004-1339
SQL injection vulnerability in the (1) MDSYS.SDO_GEOM_TRIG_INS1 and (2) MDSYS.SDO_LRS_TRIG_INS default triggers in Oracle 9i and 10g allows remote malicious users to execute arbitrary SQL commands via the new.table_name or new.column_name parameters.
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.1.4
Oracle Oracle9i 9.2.0.2
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.2.3
Oracle Oracle9i 9.2.0.1
Oracle Database Server 10.2.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.2.0.1
Oracle Oracle9i 9.0.2.1
Oracle Oracle9i 9.0.2.2
Oracle Oracle9i 9.0.2
Oracle Oracle9i 9.0.2.0.0
655
VMScore
CVE-2004-0637
Oracle Database Server 8.1.7.4 up to and including 9.2.0.4 allows local users to execute commands with additional privileges via the ctxsys.driload package, which is publicly accessible.
Oracle Oracle9i Standard 9.0.1.3
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Personal 9.2.0.4
Oracle Oracle9i Standard 9.2.0.4
1 EDB exploit
802
VMScore
CVE-2003-0096
Multiple buffer overflows in Oracle 9i Database release 2, Release 1, 8i, 8.1.7, and 8.0.6 allow remote malicious users to execute arbitrary code via (1) a long conversion string argument to the TO_TIMESTAMP_TZ function, (2) a long time zone argument to the TZ_OFFSET function, or...
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0
Oracle Oracle9i 9.0.1
Oracle Database Server 8.0.6
Oracle Oracle9i 9.0.1.2
Oracle Oracle9i 9.0.1.3
Oracle Database Server 9.2.1
Oracle Database Server 9.2.2
Oracle Oracle9i 9.0.2
890
VMScore
CVE-2003-0095
Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote malicious users to execute arbitrary code via a long username that is provided during login, as exploitable through client applications that perform their own authentication, as demons...
Oracle Oracle9i 9.0.1
Oracle Oracle9i 9.0.1.2
Oracle Database Server 8.0.6
Oracle Database Server 9.2.1
Oracle Oracle9i 9.0.1.3
Oracle Oracle9i 9.0.2
Oracle Database Server 9.2.2
Oracle Oracle8i 8.1.7
Oracle Oracle8i 8.1.7.1
Oracle Oracle9i 9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »