Vulnerabilities > Oracle
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-04-18 | CVE-2007-2122 | Multiple vulnerability in Oracle Application Server 9.0.4.3 Unspecified vulnerability in the Wireless component in Oracle Application Server 9.0.4.3 has unknown impact and attack vectors, aka AS03. | 10.0 |
2007-04-18 | CVE-2007-2121 | Multiple vulnerability in Oracle Application Server 7.0.4.4 Unspecified vulnerability in the COREid Access component in Oracle Application Server 7.0.4.4 has unknown impact and attack vectors, aka AS02. | 10.0 |
2007-04-18 | CVE-2007-2120 | Resource Management Errors vulnerability in Oracle Application Server 10.1.2.0.2/10.1.2.2/9.0.4.3 The Oracle Discoverer servlet in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote attackers to shut down an Oracle TNS Listener via a TNS STOP command in a request that uses the database/TNS alias, aka AS01. | 7.8 |
2007-04-18 | CVE-2007-2119 | Multiple vulnerability in Oracle Application Server and Database Server Cross-site scripting (XSS) vulnerability in boundary_rules.jsp in the Administration Front End for Oracle Enterprise (Ultra) Search, as used in Database Server 9.2.0.8, 10.1.0.5, and 10.2.0.2, and in Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote attackers to inject arbitrary HTML or web script via the EXPTYPE parameter, aka SES01. network oracle | 6.8 |
2007-04-18 | CVE-2007-2118 | Multiple vulnerability in Oracle April 2007 Security Update Unspecified vulnerability in the Upgrade/Downgrade component of Oracle Database 9.0.1.5 and 9.2.0.7 has unknown impact and attack vectors, aka DB13. | 7.5 |
2007-04-18 | CVE-2007-2117 | Multiple vulnerability in Oracle Database Server 9.2.0.5 Unspecified vulnerability in the Oracle Text component in Oracle Database 9.0.1.5+ and 9.2.0.5 has unknown impact and attack vectors, aka DB12. | 6.8 |
2007-04-18 | CVE-2007-2116 | Multiple vulnerability in Oracle April 2007 Security Update Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 has unknown impact and attack vectors, aka DB10. | 9.0 |
2007-04-18 | CVE-2007-2115 | Multiple vulnerability in Oracle Database Server 10.1.0.5/10.2.0.2/9.2.0.7 Unspecified vulnerability in the Change Data Capture (CDC) component in Oracle Database 9.2.0.7, 10.1.0.5, and 10.2.0.2 has unknown impact and attack vectors, aka DB09. network oracle | 6.8 |
2007-04-18 | CVE-2007-2114 | Multiple vulnerability in Oracle April 2007 Security Update Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to (1) Change Data Capture (CDC), aka DB08, and (2) Oracle Instant Client, aka DB11. | 9.0 |
2007-04-18 | CVE-2007-2113 | SQL Injection vulnerability in Oracle Database Server 10.1.0.5 SQL injection vulnerability in the Upgrade/Downgrade component (DBMS_UPGRADE_INTERNAL) for Oracle Database 10.1.0.5 allows remote authenticated users to execute arbitrary SQL commands via unknown vectors, aka DB07. | 7.5 |