Vulnerabilities > Oracle > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-10-02 | CVE-2001-1255 | WinMySQLadmin 1.1 stores the MySQL password in plain text in the my.ini file, which allows local users to obtain unathorized access the MySQL database. | 4.6 |
| 2001-07-21 | CVE-2001-0518 | Unspecified vulnerability in Oracle Oracle9I Oracle listener before Oracle 9i allows attackers to cause a denial of service by repeatedly sending the first portion of a fragmented Oracle command without sending the remainder of the command, which causes the listener to hang. | 5.0 |
| 2001-07-21 | CVE-2001-0517 | Unspecified vulnerability in Oracle Oracle8I 8.1.6/8.1.7 Oracle listener in Oracle 8i on Solaris allows remote attackers to cause a denial of service via a malformed connection packet with a maximum transport data size that is set to 0. | 5.0 |
| 2001-07-21 | CVE-2001-0516 | Unspecified vulnerability in Oracle Oracle8I and Oracle9I Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data. | 5.0 |
| 2001-07-21 | CVE-2001-0515 | Unspecified vulnerability in Oracle Database Server and Oracle8I Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. | 5.0 |
| 2001-07-21 | CVE-2001-0513 | Unspecified vulnerability in Oracle Oracle9I Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the redirected port. | 5.0 |
| 2001-07-21 | CVE-2001-0498 | Unspecified vulnerability in Oracle Oracle8I Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. | 5.0 |
| 2001-06-27 | CVE-2001-0407 | Symbolic Link File Overwriting vulnerability in MySQL Root Operation Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. | 4.6 |
| 2001-03-12 | CVE-1999-0784 | Unspecified vulnerability in Oracle Database Server 7.1.4/7.3.3 Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP. | 5.0 |
| 2001-01-09 | CVE-2000-1180 | Unspecified vulnerability in Oracle Oracle8I 8.1.5 Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument. | 4.6 |