) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:oracle:database_server:10.1.0.5
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2010-0851 |
Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality via unknown vectors. Published: April 13, 2010; 6:30:00 PM -0400 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
| CVE-2010-0071 |
Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Published: January 12, 2010; 8:30:01 PM -0500 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2009-3415 |
Unspecified vulnerability in the Oracle OLAP component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 9.0 HIGH |
| CVE-2009-3414 |
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3413. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 4.9 MEDIUM |
| CVE-2009-3413 |
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors, a different vulnerability than CVE-2008-3976 and CVE-2009-3414. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 3.2 LOW |
| CVE-2009-3412 |
Unspecified vulnerability in the Unzip component in Oracle Database 9.2.0.8, 9.2.0.8DV, and 10.1.0.5; and Oracle Application Server 10.1.2.3; allows local users to affect confidentiality via unknown vectors. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 1.0 LOW |
| CVE-2009-3411 |
Unspecified vulnerability in the Oracle Data Pump component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 4.9 MEDIUM |
| CVE-2009-3410 |
Unspecified vulnerability in the RDBMS component in Oracle Database 11.1.0.7, 10.2.0.3, 10.2.0.4, 10.1.0.5, 9.2.0.8, and 9.2.0.8DV allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Published: January 12, 2010; 8:30:00 PM -0500 |
V3.x:(not available) V2.0: 3.6 LOW |
| CVE-2009-1994 |
Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to MDSYS.PRVT_CMT_CBK. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 6.5 MEDIUM |
| CVE-2009-1992 |
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2009-1991 |
Unspecified vulnerability in the Oracle Text component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote authenticated users to affect confidentiality and integrity, related to CTXSYS.DRVXTABC. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an established researcher that this is for multiple SQL injection vulnerabilities via the (1) idx_owner or (2) idx_name parameters to the create_tables procedure. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.6 LOW |
| CVE-2009-1985 |
Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2009-1979 |
Unspecified vulnerability in the Network Authentication component in Oracle Database 10.1.0.5 and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the October 2009 CPU. Oracle has not commented on claims from an independent researcher that this is related to improper validation of the AUTH_SESSKEY parameter length that leads to arbitrary code execution. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
| CVE-2009-1972 |
Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect integrity, related to DBMS_SYS_SQL and DBMS_SQL. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
| CVE-2009-1971 |
Unspecified vulnerability in the Data Pump component in Oracle Database 10.1.0.5, 10.2.0.3, and 11.1.0.7 allows remote authenticated users to affect integrity via unknown vectors. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 3.5 LOW |
| CVE-2009-1965 |
Unspecified vulnerability in the Net Foundation Layer component in Oracle Database 9.2.0.8 and 10.1.0.5 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. Published: October 22, 2009; 2:30:00 PM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
| CVE-2009-1973 |
Unspecified vulnerability in the Virtual Private Database component in Oracle Database 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to VPD policies. Published: July 14, 2009; 7:30:00 PM -0400 |
V3.x:(not available) V2.0: 5.5 MEDIUM |
| CVE-2009-1970 |
Unspecified vulnerability in the Listener component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect availability via unknown vectors, a different vulnerability than CVE-2009-0991. Published: July 14, 2009; 7:30:00 PM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
| CVE-2009-1969 |
Unspecified vulnerability in the Auditing component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality via unknown vectors. Published: July 14, 2009; 7:30:00 PM -0400 |
V3.x:(not available) V2.0: 2.1 LOW |
| CVE-2009-1021 |
Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. Published: July 14, 2009; 7:30:00 PM -0400 |
V3.x:(not available) V2.0: 5.5 MEDIUM |