Max CVSS | 10.0 | Min CVSS | 4.4 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2007-2123 | 10.0 |
Unspecified vulnerability in the Portal component in Oracle Application Server 10.1.3 up to 10.1.3.2.0, 10.1.2 up to 10.1.2.2.0, and 9.0.4.3 has unknown impact and attack vectors, aka AS04.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2115 | 6.8 |
Unspecified vulnerability in the Change Data Capture (CDC) component in Oracle Database 9.2.0.7, 10.1.0.5, and 10.2.0.2 has unknown impact and attack vectors, aka DB09. NOTE: as of 20070424, oracle has not disputed reliable claims that this issue in
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2118 | 7.5 |
Unspecified vulnerability in the Upgrade/Downgrade component of Oracle Database 9.0.1.5 and 9.2.0.7 has unknown impact and attack vectors, aka DB13. NOTE: as of 20070424, Oracle has not disputed reliable claims that this is a buffer overflow involvi
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2126 | 10.0 |
Unspecified vulnerability in Oracle E-Business Suite 11.5.10CU2 has unknown impact and remote attack vectors in the (1) Common Applications (APPS01) and (2) iProcurement (APPS02).
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2112 | 6.0 |
Unspecified vulnerability in the Authentication component for Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and attack vectors, aka DB05. NOTE: as of 20070424, Oracle has not disputed reliable claims that this issue allows remote authenti
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2128 | 9.0 |
Unspecified vulnerability in the Sales Online component for Oracle E-Business Suite 11.5.10 has unknown impact and remote authenticated attack vectors, aka APPS08.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2119 | 6.8 |
Cross-site scripting (XSS) vulnerability in boundary_rules.jsp in the Administration Front End for Oracle Enterprise (Ultra) Search, as used in Database Server 9.2.0.8, 10.1.0.5, and 10.2.0.2, and in Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2131 | 10.0 |
Unspecified vulnerability in PeopleTools in Oracle PeopleSoft Enterprise 8.22.14, 8.47.12, and 8.48.08 has unknown impact and attack vectors, aka PSE01.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2125 | 10.0 |
Unspecified vulnerability in Collaborative Workspace in Oracle Collaboration Suite 10.1.2 has unknown impact and attack vectors, aka OCS01.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2122 | 10.0 |
Unspecified vulnerability in the Wireless component in Oracle Application Server 9.0.4.3 has unknown impact and attack vectors, aka AS03.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2170 | 9.4 |
The APPLSYS.FND_DM_NODES package in Oracle E-Business Suite does not check for valid sessions, which allows remote attackers to delete arbitrary nodes. NOTE: due to lack of details from Oracle, it is not clear whether this issue is related to other
|
16-10-2018 - 16:42 | 24-04-2007 - 20:19 | |
CVE-2007-2124 | 10.0 |
Unspecified vulnerability in the Portal component in Oracle Application Server 10.1.4.1.0 has unknown impact and remote attack vectors, aka AS05.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2129 | 10.0 |
Unspecified vulnerability in the Agent component in Oracle Enterprise Manager 9.2.0.8 has unknown impact and remote attack vectors, aka EM01.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2113 | 7.5 |
SQL injection vulnerability in the Upgrade/Downgrade component (DBMS_UPGRADE_INTERNAL) for Oracle Database 10.1.0.5 allows remote authenticated users to execute arbitrary SQL commands via unknown vectors, aka DB07. NOTE: as of 20070424, Oracle has n
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2127 | 10.0 |
Multiple unspecified vulnerabilities in Oracle E-Business Suite 12.0.0 have unknown impact and remote attack vectors via (1) Application Object Library (APPS04), iStore (2) APPS05 and (3) APPS06, (4) iSupport (APPS07), (5) Trade Management (APPS09),
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2114 | 9.0 |
Multiple unspecified vulnerabilities in Oracle Database 10.1.0.5 and 10.2.0.2 have unknown impact and remote authenticated attack vectors, related to (1) Change Data Capture (CDC), aka DB08, and (2) Oracle Instant Client, aka DB11. NOTE: as of 20070
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2134 | 7.2 |
Unspecified vulnerability in the HTML Server in Oracle JD Edwards EnterpriseOne SP23_Q1 and 8.96.I1 has unknown impact and local attack vectors, aka JDE01. The vendor has addressed this issue through the release of the following patch information: ht
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2121 | 10.0 |
Unspecified vulnerability in the COREid Access component in Oracle Application Server 7.0.4.4 has unknown impact and attack vectors, aka AS02.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2133 | 10.0 |
Unspecified vulnerability in the PeopleSoft Enterprise Human Capital Management component in Oracle PeopleSoft Enterprise 8.9 has unknown impact and attack vectors, aka PSEHCM01.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2132 | 10.0 |
Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise 8.47.12 and 8.48.08 has unknown impact and attack vectors, aka PSE02.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2117 | 6.8 |
Unspecified vulnerability in the Oracle Text component in Oracle Database 9.0.1.5+ and 9.2.0.5 has unknown impact and attack vectors, aka DB12. NOTE: as of 20070424, Oracle has not disputed reliable claims that this involves a buffer overflow in the
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2135 | 7.8 |
The ADI_BINARY component in the Oracle E-Business Suite allows remote attackers to download arbitrary documents from the APPS.FND_DOCUMENTS table via the ADI_DISPLAY_REPORT function, when passed a certain parameter. NOTE: due to lack of details from
|
16-10-2018 - 16:42 | 24-04-2007 - 20:19 | |
CVE-2007-2130 | 9.0 |
Unspecified vulnerability in Workflow Cartridge, as used in Oracle Database Server 9.2.0.1, 10.1.0.2, and 10.2.0.1; Application Server 9.0.4.3 and 10.1.2.0.2; Collaboration Suite 10.1.2; and E-Business Suite; has unknown impact and remote authenticat
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2116 | 9.0 |
Unspecified vulnerability in the Advanced Replication component in Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.5 has unknown impact and attack vectors, aka DB10. NOTE: as of 20070424, Oracle has not disputed claims that these are buffer overflows
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2120 | 7.8 |
The Oracle Discoverer servlet in Oracle Application Server 9.0.4.3, 10.1.2.0.2, and 10.1.2.2.0 allows remote attackers to shut down an Oracle TNS Listener via a TNS STOP command in a request that uses the database/TNS alias, aka AS01.
|
16-10-2018 - 16:42 | 18-04-2007 - 18:19 | |
CVE-2007-2108 | 6.8 |
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.0.1.5, 9.2.0.8, 10.1.0.5, and 10.2.0.2 on Windows allows remote attackers to have an unknown impact, aka DB01. NOTE: as of 20070424, Oracle has not disputed reliable claims t
|
16-10-2018 - 16:41 | 18-04-2007 - 18:19 | |
CVE-2007-2111 | 6.5 |
SQL injection vulnerability in the SYS.DBMS_AQADM_SYS package in Oracle Database 9.0.1.5, 9.2.0.7, and 10.1.0.5 allows remote authenticated users to inject arbitrary SQL commands via unknown vectors, aka DB04. NOTE: as of 20070424, Oracle has not di
|
16-10-2018 - 16:41 | 18-04-2007 - 18:19 | |
CVE-2007-2109 | 6.0 |
Multiple unspecified vulnerabilities in Oracle Database 10.2.0.3 have unknown impact and remote authenticated attack vectors related to (1) Rules Manager and Expression Filter components (DB02) and (2) Oracle Streams (DB06). Note: as of 20070424, Or
|
16-10-2018 - 16:41 | 18-04-2007 - 18:19 | |
CVE-2007-2110 | 4.4 |
Unspecified vulnerability in the Core RDBMS component for Oracle Database 9.0.1.5+, 9.2.0.7, and 10.1.0.4 on Windows systems has unknown impact and attack vectors, aka DB03. NOTE: as of 20070424, Oracle has not disputed reliable claims that DB03 occ
|
16-10-2018 - 16:41 | 18-04-2007 - 18:19 |