Vulnerabilities > Oracle > Database Server > 4.2.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-07-16 | CVE-2015-2655 | HTML Injection vulnerability in Oracle Application Express Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.3.00.08 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | 5.5 |
2015-07-16 | CVE-2015-2586 | Remote Security vulnerability in Oracle Database Server 1.0.2.2/4.0.8/4.2.0 Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.1 allows remote attackers to affect availability via unknown vectors. network oracle | 4.3 |
2015-07-16 | CVE-2015-2585 | Remote Security vulnerability in Oracle Application Express Unspecified vulnerability in the Application Express component in Oracle Database Server before 5.0 allows remote authenticated users to affect availability via unknown vectors. | 2.1 |
2014-10-15 | CVE-2014-6483 | Remote Security vulnerability in Oracle Database Server Unspecified vulnerability in the Application Express component in Oracle Database Server before 4.2.6 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. network oracle | 6.0 |
2005-11-02 | CVE-2005-3438 | Multiple vulnerability in Oracle October Security Update Multiple unspecified vulnerabilities in Oracle Database Server 9i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 in Change Data Capture; (2) DB06 in Data Guard Logical Standby; (3) DB10 in Locale; (4) DB12 in Materialized Views; (5) DB13 in Objects Extension; (6) DB15 in Oracle Label Security; (7) DB27 in Security, possibly due to a buffer overflow in sys.pbsde.init; and (8) DB28 and (9) DB29 in Workspace Manager. | 10.0 |
2001-12-06 | CVE-2001-0833 | Buffer Overflow vulnerability in Oracle OTRCREP Oracle Home Environment Variable Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability." | 7.2 |
2001-12-06 | CVE-2001-0832 | Local Security vulnerability in Oracle9i Enterprise Edition Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in (1) the ORACLE_HOME/rdbms/log directory or (2) an alternate directory as specified in the ORACLE_HOME environmental variable, aka the "Oracle File Overwrite Security Vulnerability." | 2.1 |