Vulnerabilities > Oracle > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-07-21 | CVE-2001-0516 | Unspecified vulnerability in Oracle Oracle8I and Oracle9I Oracle listener between Oracle 9i and Oracle 8.0 allows remote attackers to cause a denial of service via a malformed connection packet that contains an incorrect requester_version value that does not match an expected offset to the data. | 5.0 |
| 2001-07-21 | CVE-2001-0515 | Unspecified vulnerability in Oracle Database Server and Oracle8I Oracle Listener in Oracle 7.3 and 8i allows remote attackers to cause a denial of service via a malformed connection packet with a large offset_to_data value. | 5.0 |
| 2001-07-21 | CVE-2001-0513 | Unspecified vulnerability in Oracle Oracle9I Oracle listener process on Windows NT redirects connection requests to another port and creates a separate thread to process the request, which allows remote attackers to cause a denial of service by repeatedly connecting to the Oracle listener but not connecting to the redirected port. | 5.0 |
| 2001-07-21 | CVE-2001-0498 | Unspecified vulnerability in Oracle Oracle8I Transparent Network Substrate (TNS) over Net8 (SQLNet) in Oracle 8i 8.1.7 and earlier allows remote attackers to cause a denial of service via a malformed SQLNet connection request with a large offset in the header extension. | 5.0 |
| 2001-06-27 | CVE-2001-0407 | Symbolic Link File Overwriting vulnerability in MySQL Root Operation Directory traversal vulnerability in MySQL before 3.23.36 allows local users to modify arbitrary files and gain privileges by creating a database whose name starts with .. | 4.6 |
| 2001-03-12 | CVE-1999-0784 | Unspecified vulnerability in Oracle Database Server 7.1.4/7.3.3 Denial of service in Oracle TNSLSNR SQL*Net Listener via a malformed string to the listener port, aka NERP. | 5.0 |
| 2001-01-09 | CVE-2000-1180 | Unspecified vulnerability in Oracle Oracle8I 8.1.5 Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument. | 4.6 |
| 2000-12-31 | CVE-2000-1235 | Unspecified vulnerability in Oracle Application Server The default configurations of (1) the port listener and (2) modplsql in Oracle Internet Application Server (IAS) 3.0.7 and earlier allow remote attackers to view privileged database information via HTTP requests for Database Access Descriptor (DAD) files. | 5.0 |
| 2000-12-19 | CVE-2000-0987 | Unspecified vulnerability in Oracle Internet Directory and Oracle8I Buffer overflow in oidldapd in Oracle 8.1.6 allow local users to gain privileges via a long "connect" command line parameter. | 4.6 |
| 2000-12-19 | CVE-2000-0986 | Unspecified vulnerability in Oracle Oracle8I 8.1.5 Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable. | 4.6 |