Database Server

DATE	CVE	VULNERABILITY TITLE	RISK
2006-10-18	CVE-2006-5338	Multiple vulnerability in Oracle Database Server 10.1.0.5/10.2.0.0 Unspecified vulnerability in the Core RDBMS component in Oracle Database 10.1.0.5 has unknown impact and remote authenticated attack vectors related to sys.dbms_sqltune, aka Vuln# DB10. network low complexity oracle critical	9.0
2006-10-18	CVE-2006-5337	Multiple vulnerability in Oracle October 2006 Security Update Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5, 9.2.0.8, 10.1.0.5, and 10.2.0.2 has unknown impact and remote authenticated attack vectors, aka Vuln# DB09. network low complexity oracle critical	9.0
2006-10-18	CVE-2006-5336	Multiple vulnerability in Oracle Database Server 10.1.0.5/10.2.0.2/9.2.0.7 Multiple unspecified vulnerabilities in the Change Data Capture (CDC) component in Oracle Database 9.2.0.7, 10.1.0.5, and have unknown impact and remote authenticated attack vectors related to (1) sys.dbms_cdc_ipublish (Vuln# DB05) and (2) sys.dbms_cdc_isubscribe (DB06). network low complexity oracle critical	9.0
2006-10-18	CVE-2006-5335	Multiple vulnerability in Oracle October 2006 Security Update Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors related to (1) Vuln# DB04 and sys.dbms_cdc_impdp in the (a) Change Data Capture (CDC) component; (2) Vuln# DB07, (3) DB08, and (4) DB16 in sys.dbms_cdc_isubscribe in CDC; and (5) mdsys.sdo_geor_int in the (b) Oracle Spatial component, aka DB12. network low complexity oracle critical	9.0
2006-10-18	CVE-2006-5334	Multiple vulnerability in Oracle Database Server 10.1.0.5/9.0.1.5/9.2.0.7 Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.5 has unknown impact and remote authenticated attack vectors related to mdsys.md2, aka Vuln# DB03. network high complexity oracle	7.1
2006-10-18	CVE-2006-5333	Multiple vulnerability in Oracle Database Server 10.2.0.2 Unspecified vulnerability in Oracle Spatial component in Oracle Database 10.2.0.2 has unknown impact and remote authenticated attack vectors related to "create session" privileges, aka Vuln# DB02. network high complexity oracle	7.1
2006-10-18	CVE-2006-5332	Multiple vulnerability in Oracle Database Server 10.1.0.4/9.2.0.6 Unspecified vulnerability in xdb.dbms_xdbz in the XMLDB component for Oracle Database 9.2.0.6 and 10.1.0.4 has unknown impact and remote authenticated attack vectors, aka Vuln# DB01. network low complexity oracle critical	9.0
2006-07-21	CVE-2006-3705	Multiple vulnerability in Oracle Database Server 10.1.0.5 Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB21 for Statistics and (2) DB22 for Upgrade & Downgrade. network low complexity oracle critical	10.0
2006-07-21	CVE-2006-3704	Multiple vulnerability in Oracle Database Server 10.1.0.4 Unspecified vulnerability in the Oracle ODBC Driver for Oracle Database 10.1.0.4 has unknown impact and attack vectors, aka Oracle Vuln# 10.1.0.4. network low complexity oracle critical	10.0
2006-07-21	CVE-2006-3703	Multiple vulnerability in Oracle Database Server 10.1.0.4/9.0.1.5/9.2.0.6 Unspecified vulnerability in InterMedia for Oracle Database 9.0.1.5, 9.2.0.6, and 10.1.0.4 has unknown impact and attack vectors, aka oracle Vuln# DB07. network low complexity oracle critical	9.0