Vulnerabilities > Oracle > Database Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2010-07-13 | CVE-2010-0903 | Remote Net Foundation Layer vulnerability in Oracle Database Server Unspecified vulnerability in the Net Foundation Layer component in Oracle Database Server 9.2.0.8, 10.1.0.5, 10.2.0.4, 11.1.0.7, and 11.2.0.1, when running on Windows, allows remote attackers to affect availability via unknown vectors. | 7.8 |
| 2010-04-13 | CVE-2010-0860 | Remote Core RDBMS vulnerability in Oracle Database Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors related to the Create User privilege. | 7.1 |
| 2010-04-13 | CVE-2010-0853 | Oracle Internet Directory Remote vulnerability in Oracle Fusion Middleware Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8, 9.2.0.8, and DV; and Oracle Fusion Middleware 10.1.2.3 and 10.1.4.0.1; allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 7.5 |
| 2009-07-14 | CVE-2009-1963 | Unspecified vulnerability in Oracle Database Server 11.1.0.6 Unspecified vulnerability in the Network Foundation component in Oracle Database 11.1.0.6 allows remote authenticated users to affect integrity and availability via unknown vectors. | 7.5 |
| 2009-07-14 | CVE-2009-1019 | Remote Network Authentication vulnerability in Oracle Database Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | 7.5 |
| 2008-04-16 | CVE-2008-1819 | Unspecified vulnerability in Oracle Database 9I and Database Server Unspecified vulnerability in the Oracle Net Services component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and local attack vectors, aka DB09. | 7.2 |
| 2007-11-08 | CVE-2007-5897 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Oracle Database Server Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. | 8.5 |
| 2007-10-18 | CVE-2007-5554 | Information Exposure vulnerability in Oracle Database Server Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle reference number 7892711. | 7.1 |
| 2007-10-17 | CVE-2007-5520 | Unspecified vulnerability in Oracle Application Server and Database Server Unspecified vulnerability in the Oracle Internet Directory component in Oracle Database 9.2.0.8 and 9.2.0.8DV, and Oracle Application Server 9.0.4.3, 10.1.3.0.0 up to 10.1.3.3.0, and 10.1.2.0.1 up to 10.1.2.2.0, has unknown impact and remote attack vectors, aka AS05. | 7.5 |
| 2007-10-17 | CVE-2007-5512 | Unspecified vulnerability in Oracle Database Server 10.2.0.3/9.2.0.8Dv Unspecified vulnerability in the Oracle Database Vault component in Oracle Database 9.2.0.8DV and 10.2.0.3 has unknown impact and remote attack vectors, aka DB21. | 7.5 |