Vulnerabilities > Oracle > Database Server > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-10-18 | CVE-2006-5334 | Multiple vulnerability in Oracle Database Server 10.1.0.5/9.0.1.5/9.2.0.7 Unspecified vulnerability in Oracle Spatial component in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.5 has unknown impact and remote authenticated attack vectors related to mdsys.md2, aka Vuln# DB03. | 7.1 |
| 2006-10-18 | CVE-2006-5333 | Multiple vulnerability in Oracle Database Server 10.2.0.2 Unspecified vulnerability in Oracle Spatial component in Oracle Database 10.2.0.2 has unknown impact and remote authenticated attack vectors related to "create session" privileges, aka Vuln# DB02. | 7.1 |
| 2006-04-20 | CVE-2006-1877 | Multiple vulnerability in Oracle Database Server 8.1.7.4/9.0.1.5/9.2.0.7 Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.7 has unknown impact and attack vectors in the Oracle Spatial component, aka Vuln# DB13. | 7.2 |
| 2006-04-20 | CVE-2006-1874 | Multiple vulnerability in Oracle Database Server 8.1.7.4/9.0.1.5/9.2.0.6 Unspecified vulnerability in Oracle Database Server 8.1.7.4, 9.0.1.5, and 9.2.0.6 has unknown impact and attack vectors in the Oracle Spatial component, aka Vuln# DB09. | 7.5 |
| 2006-04-20 | CVE-2006-1872 | Multiple vulnerability in Oracle April 2006 Security Update Unspecified vulnerability in Oracle Database Server 9.0.1.5 and 9.2.0.7 has unknown impact and attack vectors in the Oracle Enterprise Manager Intelligent Agent component, aka Vuln# DB07. | 7.5 |
| 2006-04-20 | CVE-2006-1868 | Buffer Errors vulnerability in Oracle Database Server 10.1.0.4 Buffer overflow in the Advanced Replication component in Oracle Database Server 10.1.0.4 allows database users to execute arbitrary code via the VERIFY_LOG procedure of the DBMS_SNAPSHOT_UTL package, aka Vuln# DB03. | 7.5 |
| 2006-02-04 | CVE-2006-0552 | Multiple vulnerability in Oracle January Security Update Unspecified vulnerability in the Net Listener component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, and 9.2.0.7 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB11. | 7.5 |
| 2006-02-04 | CVE-2006-0551 | SQL-Injection vulnerability in Oracle10g Standard Edition SQL injection vulnerability in the Data Pump Metadata API in Oracle Database 10g and possibly earlier might allow remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
| 2006-02-04 | CVE-2006-0549 | SQL-Injection vulnerability in Oracle Database Server 10.1.0.5 SQL injection vulnerability in the SYS.DBMS_METADATA_UTIL package in Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |
| 2006-02-04 | CVE-2006-0548 | SQL-Injection vulnerability in Oracle Database Server 10.1.0.4.2 SQL injection vulnerability in the Oracle Text component of Oracle Database 10g, and possibly earlier versions, might allow remote attackers to execute arbitrary SQL commands via unknown vectors. | 7.5 |