Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Database_server
(Oracle)| Repositories |
• https://github.com/madler/zlib
• https://github.com/FasterXML/jackson-databind |
| #Vulnerabilities | 504 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2008-01-17 | CVE-2008-0345 | Unspecified vulnerability in the Core RDBMS component in Oracle Database 11.1.0.6 has unknown impact and remote attack vectors, aka DB08. | Application_server, Collaboration_suite, Database_server, E\-Business_suite, Peoplesoft_enterprise_peopletools | N/A | ||
| 2008-01-17 | CVE-2008-0344 | Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote attack vectors, aka DB07. | Application_server, Collaboration_suite, Database_server, E\-Business_suite, Peoplesoft_enterprise_peopletools | N/A | ||
| 2008-01-17 | CVE-2008-0343 | Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has unknown impact and remote attack vectors, aka DB06. | Application_server, Collaboration_suite, Database_server, E\-Business_suite, Peoplesoft_enterprise_peopletools | N/A | ||
| 2008-01-17 | CVE-2008-0342 | Unspecified vulnerability in the Upgrade/Downgrade component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB05. | Database_server | N/A | ||
| 2008-01-17 | CVE-2008-0341 | Unspecified vulnerability in the Advanced Queuing component in Oracle Database 9.0.1.5 FIPS+ and 10.1.0.5 has unknown impact and remote attack vectors, aka DB03. | Database_server | N/A | ||
| 2008-01-17 | CVE-2008-0340 | Multiple unspecified vulnerabilities in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 have unknown impact and remote attack vectors, related to the (1) Advanced Queuing component (DB02) and (2) Oracle Spatial component (DB04). | Application_server, Collaboration_suite, Database_server, E\-Business_suite, Peoplesoft_enterprise_peopletools | N/A | ||
| 2008-01-17 | CVE-2008-0339 | Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 has unknown impact and remote attack vectors, aka DB01. | Database_server | N/A | ||
| 2007-12-06 | CVE-2007-6260 | The installation process for Oracle 10g and llg uses accounts with default passwords, which allows remote attackers to obtain login access by connecting to the Listener. NOTE: at the end of the installation, if performed using the Database Configuration Assistant (DBCA), most accounts are disabled or their passwords are changed. | Database_server | N/A | ||
| 2007-11-08 | CVE-2007-5897 | Buffer overflow in MDSYS.SDO_CS in Oracle Database Server 8iR3, 9iR1, 9iR2 up to 9.2.0.6, and 10gR1 up to 10.1.0.4 allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via the TRANSFORM function. NOTE: this issue might already be covered by CVE-2007-5515, CVE-2007-5509, or CVE-2007-5505, but there are insufficient details to be sure. | Database_server | N/A | ||
| 2007-10-18 | CVE-2007-5554 | Oracle allows remote attackers to obtain server memory contents via crafted packets, aka Oracle reference number 7892711. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes. | Database_server | N/A |