Vulnerabilities > Oracle > Critical

DATE CVE VULNERABILITY TITLE RISK
2005-11-02 CVE-2005-3438 Multiple vulnerability in Oracle October Security Update
Multiple unspecified vulnerabilities in Oracle Database Server 9i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB04 in Change Data Capture; (2) DB06 in Data Guard Logical Standby; (3) DB10 in Locale; (4) DB12 in Materialized Views; (5) DB13 in Objects Extension; (6) DB15 in Oracle Label Security; (7) DB27 in Security, possibly due to a buffer overflow in sys.pbsde.init; and (8) DB28 and (9) DB29 in Workspace Manager.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3439 Multiple vulnerability in Oracle October Security Update
Multiple unspecified vulnerabilities in Oracle Database Server 10g up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB02, (2) DB03, and (3) DB05 in Change Data Capture; (4) DB07 in Data Pump Export; and (5) DB18, (6) DB19, (7) DB20, (8) DB21, (9) DB22, (10) DB23, (11) DB24, and (12) DB25 in the Spatial component.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3440 Multiple vulnerability in Oracle Database Server 10.1.0.3
Unspecified vulnerability in Database Scheduler in Oracle Database Server 10g up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB08.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3441 Multiple vulnerability in Oracle October Security Update
Unspecified vulnerability in Intelligent Agent in Oracle Database Server 9i up to 9.0.1.5 has unknown impact and attack vectors, aka Oracle Vuln# DB14.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3442 Multiple vulnerability in Oracle October Security Update
Multiple unspecified vulnerabilities in Oracle Database Server 8i up to 10.1.0.4.2 have unknown impact and attack vectors, aka Oracle Vuln# (1) DB09 in Export, (2) DB11 in Materialized Views, and (3) DB16 in Security Service.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3443 Multiple vulnerability in Oracle October Security Update
Unspecified vulnerability in the Spatial component in Oracle Database Server from 9i up to 10.1.0.3 has unknown impact and attack vectors, aka Oracle Vuln# DB17.
network
low complexity
oracle
critical
10.0
2005-11-02 CVE-2005-3444 Multiple vulnerability in Oracle October Security Update
Multiple unspecified vulnerabilities in the Programmatic Interface in Oracle Database Server from 8i up to 9.2.0.5 have unknown impact and attack vectors, aka Oracle Vuln# DB26.
network
low complexity
oracle
critical
10.0
2004-12-03 CVE-2003-1208 Buffer Overflow vulnerability in Multiple Oracle Database Parameter/Statement
Multiple buffer overflows in Oracle 9i 9 before 9.2.0.3 allow local users to execute arbitrary code by (1) setting the TIME_ZONE session parameter to a long value, or providing long parameters to the (2) NUMTOYMINTERVAL, (3) NUMTODSINTERVAL or (4) FROM_TZ functions.
network
low complexity
oracle
critical
10.0
2004-11-03 CVE-2004-0836 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Buffer overflow in the mysql_real_connect function in MySQL 4.x before 4.0.21, and 3.x before 3.23.49, allows remote DNS servers to cause a denial of service and possibly execute arbitrary code via a DNS response with a large address length (h_length).
network
low complexity
oracle debian CWE-119
critical
10.0
2004-08-06 CVE-2004-0543 SQL Injection vulnerability in Oracle Applications and E-Business Suite
Multiple SQL injection vulnerabilities in Oracle Applications 11.0 and Oracle E-Business Suite 11.5.1 through 11.5.8 allow remote attackers to execute arbitrary SQL procedures and queries.
network
low complexity
oracle
critical
10.0