Vulnerabilities > Oracle > Database Server > 10.1.0.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-11-08 | CVE-2007-5897 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Oracle Database Server Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. | 8.5 |
2006-10-18 | CVE-2006-5343 | Multiple vulnerability in Oracle Database Server 10.1.0.3 Unspecified vulnerability in Database Scheduler component in Oracle Database 10.1.0.3 has unknown impact and remote authenticated attack vectors related to sys.dbms_scheduler, aka Vuln# DB19. | 9.0 |
2006-10-18 | CVE-2006-5342 | Multiple vulnerability in Oracle October 2006 Security Update Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.3 has unknown impact and remote authenticated attack vectors related to mdsys.sdo_tune, aka Vuln# DB18. | 7.1 |
2006-02-04 | CVE-2006-0551 | SQL-Injection vulnerability in Oracle10g Standard Edition SQL injection vulnerability in the Data Pump Metadata API in Oracle Database 10g and possibly earlier might allow remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
2006-02-04 | CVE-2006-0547 | SQL-Injection vulnerability in Oracle10g Personal Edition Oracle Database 8i, 9i, and 10g allow remote authenticated users to execute arbitrary SQL statements in the context of the SYS user and bypass audit logging, including statements to create new privileged database accounts, via a modified AUTH_ALTER_SESSION attribute in the authentication phase of the Transparent Network Substrate (TNS) protocol. | 7.5 |
2006-01-18 | CVE-2006-0256 | Multiple vulnerability in Oracle January Security Update Unspecified vulnerability in the Advanced Queuing component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.2.0.6, 10.1.0.3 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB01. | 10.0 |
2005-11-02 | CVE-2005-3447 | Multiple vulnerability in Oracle October Security Update Unspecified vulnerability in Single Sign-On in Oracle Database Server 10g up to 10.1.0.4.2 and Application Server 9.0.2.3 up to 9.0.4.2 has unknown impact and attack vectors, aka Oracle Vuln# DB33 and AS08. | 10.0 |
2005-11-02 | CVE-2005-3445 | Multiple vulnerability in Oracle Application Server and Database Server Multiple unspecified vulnerabilities in HTTP Server in Oracle Database Server 8i up to 10.1.0.4.2 and Application Server 1.0.2.2 up to 10.1.2.0 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB30 and AS03 or (2) DB31 and AS05. | 10.0 |
2005-11-02 | CVE-2005-3443 | Multiple vulnerability in Oracle October Security Update Unspecified vulnerability in the Spatial component in Oracle Database Server from 9i up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB17. | 10.0 |
2005-11-02 | CVE-2005-3442 | Multiple vulnerability in Oracle October Security Update Multiple unspecified vulnerabilities in Oracle Database Server 8i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB09 in Export, (2) DB11 in Materialized Views, and (3) DB16 in Security Service. | 10.0 |