Computer Security

Search:Software:Oracle 9i
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



See also
  ORACLE : Oracle 9iAS
Name:ORACLE : Oracle 9i

8!Oracle / Sun applications multiple security vulneraebilities
updated since 15.07.2010
document Quarterly update fixed 59 different vulnerabilities.
8!Oracle / Sun applications multiple security ulnerabilities
updated since 16.04.2010
document Oracle quarterly CPU contains fixes for approximately 50 different vulnerabilities.
8!Oracle quarterly security update
updated since 16.07.2009
document Approximately 30 vulnerabilities in different applications are fixed.
9!Oracle multiple application security vulnerabilities
document >20 vulnerabilities are fixed in different Oracle applications.
9!Oracle applications multiple security vulnerabilities
updated since 15.01.2009
document Oracle Critical Patch Update fixes >40 of different vulnerabilities in all Oracle applications.
8!Oracle multiple security vulnerabilities
updated since 22.10.2009
document Oracle quarterly Critical Patch Update fixes approximately 40 vulnerabilities in different Oracle products.
8!Oracle multiple security vulnerabilities
updated since 16.04.2009
document Quarterly update fixes nearly 50 different security vulnerabilities
8!Oracle database server multiple security vulnerabilities
updated since 16.04.2008
document CPU for April, 2008 fixes huge number of vulnerabilities.
8!Oracle multiple security vulnerabilities
updated since 26.10.2008
document New quarterly updated fixes different types of security vulnerabilities.
8!Oracle multiple security vulnerabilities
updated since 18.07.2008
document New Critical Patch Update patches nearly 50 different vulnerabilities in all Oracle products.
7!Oracle multiple security vulnerabilities
updated since 18.10.2007
document New quartly critical patch update fixes few dozens of security vulnerabilities.
7!Oracle multiple security vulnerabilities
updated since 19.07.2007
document DBMS_DRS.GET_PROPERTY and MDSYS.MD buffer overflow, crossite scripting, privilege escalation with views.
7!Oracle critical patch update
updated since 18.04.2007
document Patch set fixes 36 vulnerabilities in Oracle applications, including 13 vulnerabilities in Oracle database server.
 Oracle authentication downgrade
document It's possible for man-in-the-middle to force client and server to use weaker authentication protocol.
9!Multiple Orcale security vulnerabilities.... again...
updated since 18.01.2007
document Released security update fixes 17 security vulnerabilities for Oracle Database, 9 vulnerabilities in Oracle HTTP Server, 12 security vulnerabilities for Oracle Application Server, 7 vulnerabilities for Oracle E-Business Suite, 6 security bugs in Oracle Enterprise Manager, 3 bugs in Oracle PeopleSoft Enterprise PeopleTools. There is also a large number of different old and new bugs, many are not fixed for years. It makes it useless to talk about Oracle security. Use 3rd party products to protect your Oracle environment.
8!Multiple Oracle application server vulnerabilities
updated since 19.04.2005
document SQL injections, DoS, data modification, crossite scripting, privilege escalation, audit setings modification. Password is passed from JDeveloper to SQLPlus in cleartext. JDeveloper password is stored in cleartext in different XML configuration files. Cleartext FormBuilder password is stored in temporary files. Weak permissions for temporary files. Reading and writing any file with Oracle Reports. Command execution with Oracle Forms and Oracle Reports. There is also a large number of different old and new bugs, many are not fixed for years. It makes it useless to talk about Oracle security. Use 3rd party products to protect your Oracle environment.
 Oracle multiple vulnerabilities
   
 Oracle database UTL_FILE object directory traversal
document Directory traversal in UTL_FILE methods.
7!Multiple Oracle Database Server security problems
updated since 18.01.2005
document SQL injection, privilege escalation, buffer overflows.
9!Multiple Orcale bugs
updated since 01.09.2004
document Buffer overflows, DoS, SQL injections, etc.
6!Oracle web cache buffer overflow
updated since 17.03.2004
document Heap overflow on invalid HTTP/HTTPS request.
9!Multiple bugs in Orcale
updated since 17.02.2003
document Multiple bugs including remote buffer overflow in authentication process.
6!Oracle SQL injection
document Multiple SQL injection bugs in differenc components.
6!Oracle buffer overflow
document Command line buffer overflow allows to obtain oracle uid.
6!Oracle iSQL*Plus buffer overflow
document Buffer overflow on oversized username.
 Oracle TNS Listener DoS
document Command (CONNECT_DATA=(COMMAND=SERVICE_CURLOAD)) causes service to hang after disconnection.
6!Multiple bugs in Oracle Listener
document Format string bug, DoS.
 Information leak in Oracle Reports Server
document It's possible to obtain system data.
                    
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server