Total
210374 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2009-1992 | 2 Microsoft, Oracle | 2 Windows, Database Server | 2012-10-22 | 10.0 HIGH | N/A |
| Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2009-1993 | 1 Oracle | 1 Database Server | 2012-10-22 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the Application Express component in Oracle Database 3.0.1 allows remote authenticated users to affect confidentiality and integrity, related to FLOWS_030000.WWV_EXECUTE_IMMEDIATE. | |||||
| CVE-2009-1994 | 1 Oracle | 1 Database Server | 2012-10-22 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 allows remote authenticated users to affect confidentiality, integrity, and availability, related to MDSYS.PRVT_CMT_CBK. | |||||
| CVE-2009-1995 | 1 Oracle | 1 Database Server | 2012-10-22 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the Advanced Queuing component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality and integrity, related to SYS.DBMS_AQ_INV. | |||||
| CVE-2009-1996 | 1 Oracle | 1 Database Server | 2012-10-22 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the Logical Standby component in Oracle Database allows remote authenticated users to affect integrity via unknown vectors. | |||||
| CVE-2009-1997 | 1 Oracle | 1 Database Server | 2012-10-22 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors. | |||||
| CVE-2009-1998 | 1 Oracle | 1 Industry Applications | 2012-10-22 | 4.9 MEDIUM | N/A |
| Unspecified vulnerability in the Oracle Communications Order and Service Management component in Oracle Industry Applications 2.8.0, 6.2.0, 6.3.0, and 6.3.1 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. | |||||
| CVE-2009-1999 | 1 Oracle | 1 Application Server | 2012-10-22 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2009-2000 | 1 Oracle | 1 Database Server | 2012-10-22 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Authentication component in Oracle Database 11.1.0.7 allows remote attackers to affect confidentiality via unknown vectors. | |||||
| CVE-2009-2001 | 1 Oracle | 1 Database Server | 2012-10-22 | 6.5 MEDIUM | N/A |
| Unspecified vulnerability in the PL/SQL component in Oracle Database 10.2.0.4 and 11.1.0.7 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2009-2002 | 1 Oracle | 1 Bea Product Suite | 2012-10-22 | 4.3 MEDIUM | N/A |
| Unspecified vulnerability in the WebLogic Portal component in BEA Product Suite 8.1.6, 9.2.3, 10.0.1, 10.2.1, and 10.3.1.0.0 allows remote attackers to affect integrity via unknown vectors. | |||||
| CVE-2009-1523 | 1 Mortbay | 1 Jetty | 2012-10-22 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in the HTTP server in Mort Bay Jetty 5.1.14, 6.x before 6.1.17, and 7.x through 7.0.0.M2 allows remote attackers to access arbitrary files via directory traversal sequences in the URI. | |||||
| CVE-2009-1720 | 1 Openexr | 1 Openexr | 2012-10-22 | 7.5 HIGH | N/A |
| Multiple integer overflows in OpenEXR 1.2.2 and 1.6.1 allow context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors that trigger heap-based buffer overflows, related to (1) the Imf::PreviewImage::PreviewImage function and (2) compressor constructors. NOTE: some of these details are obtained from third party information. | |||||
| CVE-2009-1721 | 1 Openexr | 1 Openexr | 2012-10-22 | 6.8 MEDIUM | N/A |
| The decompression implementation in the Imf::hufUncompress function in OpenEXR 1.2.2 and 1.6.1 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via vectors that trigger a free of an uninitialized pointer. | |||||
| CVE-2009-1722 | 1 Openexr | 1 Openexr | 2012-10-22 | 6.8 MEDIUM | N/A |
| Heap-based buffer overflow in the compression implementation in OpenEXR 1.2.2 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via unspecified vectors. | |||||
| CVE-2009-0973 | 1 Oracle | 1 Database 10g | 2012-10-22 | 5.0 MEDIUM | N/A |
| Unspecified vulnerability in the Cluster Ready Services component in Oracle Database 10.1.0.5 allows remote attackers to affect availability via unknown vectors. | |||||
| CVE-2009-0976 | 1 Oracle | 2 Database 10g, Database 11g | 2012-10-22 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the Workspace Manager component in Oracle Database 10.2.0.4 and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to LTADM. | |||||
| CVE-2009-0979 | 1 Oracle | 1 Database 9i | 2012-10-22 | 9.0 HIGH | N/A |
| Unspecified vulnerability in the Resource Manager component in Oracle Database 9.2.0.8 and 9.2.0.8DV allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors. | |||||
| CVE-2009-0980 | 1 Oracle | 2 Database 10g, Database 11g | 2012-10-22 | 5.5 MEDIUM | N/A |
| Unspecified vulnerability in the SQLX Functions component in Oracle Database 10.2.0.3 and 11.1.0.6 allows remote authenticated users to affect integrity and availability, related to AGGXQIMP. | |||||
| CVE-2009-0982 | 1 Oracle | 2 Jd Edwards Enterpriseone, Peoplesoft Enterprise | 2012-10-22 | 4.0 MEDIUM | N/A |
| Unspecified vulnerability in the PeopleSoft Enterprise PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.49.19 allows remote authenticated users to affect integrity via unknown vectors. | |||||