Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oracle10g vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2006-6703
Multiple cross-site scripting (XSS) vulnerabilities in Oracle Portal 9i and 10g allow remote malicious users to inject arbitrary JavaScript via the tc parameter in webapp/jsp/container_tabs.jsp, and other unspecified vectors.
Oracle Oracle10g
Oracle Oracle9i
1 EDB exploit
668
VMScore
CVE-2005-3641
Oracle Databases running on Windows XP with Simple File Sharing enabled, allows remote malicious users to bypass authentication by supplying a valid username.
Oracle Database Server 7.0.64
Oracle Database Server 8.0.3
Oracle Database Server 8.0.5
Oracle Database Server 8.1.6
Oracle Database Server 8.1.7.4
Oracle Oracle10g Enterprise 10.1.0.3.1
Oracle Oracle10g Enterprise 9.0.4.0
Oracle Oracle10g Standard 10.1.0.3
Oracle Oracle10g Standard 10.1.0.4
Oracle Oracle8i Enterprise 8.0.6.0.1
Oracle Oracle8i Enterprise 8.1.5.0.2
Oracle Oracle8i Enterprise 8.1.6.0.0
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.0.1.5
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.6
Oracle Oracle9i Personal 9.0.1.5 Fips
Oracle Oracle9i Personal 9.0.4
Oracle Oracle9i Standard 8.1.7
668
VMScore
CVE-2006-0552
Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11.
Oracle Application Server 10.1.2.0.0
Oracle Application Server 10.1.2.0.1
Oracle Application Server 9.0.4.2
Oracle Collaboration Suite 10.1.1
Oracle Developer Suite 9.0.2.1
Oracle Developer Suite 9.0.4.1
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.6
Oracle Oracle10g Enterprise 10.1.0.4
Oracle Oracle10g Personal 10.1.0.3
Oracle Oracle10g Personal 10.1.0.4
Oracle Oracle8i Standard 8.0.6
Oracle Oracle8i Standard 8.0.6.3
Oracle Peoplesoft Enterprise Portal 8.4
Oracle Peoplesoft Enterprise Portal 8.8
Oracle 10g Enterprise Manager Grid Control 10.1 .0.4
Oracle Application Server 1.0.2.2
Oracle Application Server 10.1.2.0.2
Oracle Application Server 10.1.2.1.0
Oracle Database Server 8.0.6
Oracle Database Server 8.0.6.3
Oracle E-business Suite 11.5.10
578
VMScore
CVE-2007-3856
Unspecified vulnerability in the Oracle Data Mining component for Oracle Database 10g Release 2 10.2.0.2 and 10.2.0.3, 10g 10.1.0.5, and Oracle9i Database Release 2 9.2.0.7, 9.2.0.8, and 9.2.0.8DV has unknown impact and remote authenticated attack vectors related to DMSYS.DMP_SYS...
Oracle Database Server 9.2.0.8
Oracle Database Server 9.2.0.8dv
Oracle Database Server 10.2.0.3
Oracle Database Server 9.2.0.7
Oracle Oracle10g Standard 10.1.0.5
Oracle Database Server 10.2.0.2
801
VMScore
CVE-2004-1371
Stack-based buffer overflow in Oracle 9i and 10g allows remote malicious users to execute arbitrary code via a long token in the text of a wrapped procedure.
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle Database Server 9i Application Server
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.0.6 .3
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.2
Oracle Oracle9i Personal 9.2.0.3
Oracle Oracle9i Personal 9.2.0.4
Oracle Oracle9i Standard 9.0.1.4
Oracle Oracle9i Standard 9.0.1.5
Oracle Oracle9i Standard 9.2.0.5
860
VMScore
CVE-2004-1364
Directory traversal vulnerability in extproc in Oracle 9i and 10g allows remote malicious users to access arbitrary libraries outside of the $ORACLE_HOME\bin directory.
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Collaboration Suite Release 1
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Database Control 10.1.2
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.1.7 .1
Oracle Oracle8i Standard 8.1.7 .4
Oracle Oracle9i Enterprise 9.2.0.1
Oracle Oracle9i Enterprise 9.2.0.2
Oracle Oracle9i Personal 9.0.1.5
Oracle Oracle9i Personal 9.2
Oracle Oracle9i Standard 9.0
2 EDB exploits
409
VMScore
CVE-2004-1366
Oracle 10g Database Server stores the password for the SYSMAN account in cleartext in the world-readable emoms.properties file, which could allow local users to gain DBA privileges.
Oracle Application Server
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.4.1
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle E-business Suite 11.5.9
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.1.5
Oracle Oracle8i Standard 8.1.6
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.0.1
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Oracle9i Personal 9.2.0.3
694
VMScore
CVE-2004-1368
ISQL*Plus in Oracle 10g Application Server allows remote malicious users to execute arbitrary files via an absolute pathname in the file parameter to the load.uix script.
Oracle Application Server
Oracle Application Server 9.0.2
Oracle Application Server 9.0.4
Oracle Application Server 9.0.4.0
Oracle E-business Suite 11.5.5
Oracle E-business Suite 11.5.6
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.5 .0.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.2.3
Oracle Application Server 9.0.3
Oracle Application Server 9.0.3.1
Oracle E-business Suite 11.5.3
Oracle E-business Suite 11.5.4
Oracle Enterprise Manager 9.0.1
Oracle Enterprise Manager Database Control 10.1.2
Oracle Oracle10g Standard 9.0.4 .0
Oracle Oracle8i Enterprise 8.0.5 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.0
445
VMScore
CVE-2004-1369
The TNS Listener in Oracle 10g allows remote malicious users to cause a denial of service (listener crash) via a malformed service_register_NSGR request containing a value that is used as an invalid offset for a pointer that references incorrect memory.
Oracle Application Server 9.0.2.0.0
Oracle Application Server 9.0.2.0.1
Oracle Application Server 9.0.4.0
Oracle Application Server 9.0.4.1
Oracle E-business Suite 11.5.7
Oracle E-business Suite 11.5.8
Oracle Oracle10g Enterprise 9.0.4 .0
Oracle Oracle10g Personal 10.1 .0.2
Oracle Oracle8i Enterprise 8.1.5 .0.0
Oracle Oracle8i Enterprise 8.1.5 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
Oracle Oracle8i Standard 8.0.6 .3
Oracle Oracle8i Standard 8.1.5
Oracle Oracle9i Client 9.2.0.2
Oracle Oracle9i Enterprise 8.1.7
Oracle Oracle9i Enterprise 9.2.0.3
Oracle Oracle9i Enterprise 9.2.0.4
Oracle Oracle9i Enterprise 9.2.0.5
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.1
668
VMScore
CVE-2004-1362
The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote malicious users to bypass access restrictions for certain procedures via an encoded URL w...
Oracle Application Server
Oracle Application Server 9.0.2
Oracle Application Server 9.0.3.1
Oracle Application Server 9.0.4
Oracle E-business Suite 11.5.4
Oracle E-business Suite 11.5.5
Oracle Enterprise Manager Grid Control 10.1.0.2
Oracle Oracle10g Enterprise 10.1.0.2
Oracle Oracle8i Enterprise 8.0.6 .0.0
Oracle Oracle8i Enterprise 8.0.6 .0.1
Oracle Oracle8i Enterprise 8.1.7 .1.0
Oracle Oracle8i Enterprise 8.1.7 .4
Oracle Oracle8i Standard 8.0.6
Oracle Application Server 9.0.2.1
Oracle Application Server 9.0.2.2
Oracle Collaboration Suite Release 1
Oracle E-business Suite 11.5.1
Oracle E-business Suite 11.5.9
Oracle Enterprise Manager 9
Oracle Oracle10g Personal 9.0.4 .0
Oracle Oracle10g Standard 10.1 .0.2
Oracle Oracle8i Enterprise 8.1.5 .1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »