Oracle

HTTP Server

103 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
10

CVE-2006-5347

  • EPSS 0.79%
  • Published 18.10.2006 01:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle Collaboration Suite 9.0.4.2 has unknown impact and remote attack vectors related to HTTPS and SSL, aka Vuln# OHS04.

10

CVE-2006-5348

  • EPSS 0.79%
  • Published 18.10.2006 01:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, Oracle Collaboration Suite 9.0.4.2, and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and remote attack vectors related to HTTPS and SSL, aka Vuln# OHS05.

10

CVE-2006-5349

  • EPSS 0.79%
  • Published 18.10.2006 01:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7, when running on HP Tru64 UNIX, has unknown impact and remote attack vectors related to HTTPS and SSL, aka Vuln# OHS07.

7.2

CVE-2006-5350

  • EPSS 0.38%
  • Published 18.10.2006 01:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown impact and local attack vectors, aka Vuln# OHS08.

10

CVE-2006-5354

  • EPSS 0.79%
  • Published 18.10.2006 01:07:00
  • Last modified 09.04.2025 00:30:58

Unspecified vulnerability in Oracle HTTP Server 9.2.0.7 and 10.1.0.5, Application Server 9.0.4.3, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0, racle Collaboration Suite 9.0.4.2 and 10.1.2, and Oracle E-Business Suite and Applications 11.5.10CU2 has unknown ...

7.5

CVE-2006-0435

  • EPSS 5.45%
  • Published 26.01.2006 11:07:00
  • Last modified 03.04.2025 01:03:51

Unspecified vulnerability in Oracle PL/SQL (PLSQL), as used in Database Server DS 9.2.0.7 and 10.1.0.5, Application Server 1.0.2.2, 9.0.4.2, 10.1.2.0.2, 10.1.2.1.0, and 10.1.3.0.0, E-Business Suite and Applications 11.5.10, and Collaboration Suite 10...

6.8

CVE-2004-2115

Exploit
  • EPSS 50.28%
  • Published 31.12.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple cross-site scripting (XSS) vulnerabilities in Oracle HTTP Server 1.3.22, based on Apache, allow remote attackers to execute arbitrary script as other users via the (1) action, (2) username, or (3) password parameters in an isqlplus request.

2.6

CVE-2004-1877

  • EPSS 0.82%
  • Published 30.03.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

The p_submit_url value in the sample login form in the Oracle 9i Application Server (9iAS) Single Sign-on Administrators Guide, Release 2(9.0.2) for Oracle SSO allows remote attackers to spoof the login page, which could allow users to inadvertently ...

7.5

CVE-2002-0655

  • EPSS 0.88%
  • Published 12.08.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, does not properly handle ASCII representations of integers on 64 bit platforms, which could allow attackers to cause a denial of service and possibly execute arbitrary code.

7.5

CVE-2002-0656

  • EPSS 89.06%
  • Published 12.08.2002 04:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflows in OpenSSL 0.9.6d and earlier, and 0.9.7-beta2 and earlier, allow remote attackers to execute arbitrary code via (1) a large client master key in SSL2 or (2) a large session ID in SSL3.