Vulnerabilities (CVE)

Filtered by vendor Oracle Subscribe

Filtered by product Oracle8i

Total 46 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2006-0262	1 Oracle	4 Database Server, Oracle10g, Oracle8i and 1 more	2025-04-03	10.0 HIGH	N/A
Unspecified vulnerability in the Net Foundation Layer component of Oracle Database server 8.1.7.4, 9.0.1.5, 9.0.1.5 FIPS, 9.2.0.6, and 10.1.0.4 has unspecified impact and attack vectors, as identified by Oracle Vuln# DB08.
CVE-2002-0567	1 Oracle	3 Database Server, Oracle8i, Oracle9i	2025-04-03	7.5 HIGH	N/A
Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.
CVE-1999-0711	1 Oracle	1 Oracle8i	2025-04-03	4.6 MEDIUM	N/A
The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.
CVE-2004-1362	1 Oracle	9 Application Server, Collaboration Suite, E-business Suite and 6 more	2025-04-03	7.5 HIGH	N/A
The PL/SQL module for the Oracle HTTP Server in Oracle Application Server 10g, when using the WE8ISO8859P1 character set, does not perform character conversions properly, which allows remote attackers to bypass access restrictions for certain procedures via an encoded URL with "%FF" encoded sequences that are improperly converted to "Y" characters.
CVE-2002-0568	1 Oracle	3 Application Server, Oracle8i, Oracle9i	2025-04-03	2.1 LOW	N/A
Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting (1) XSQLConfig.xml or (2) soapConfig.xml through a virtual directory.
CVE-2000-1180	1 Oracle	1 Oracle8i	2025-04-03	4.6 MEDIUM	N/A
Buffer overflow in cmctl program in Oracle 8.1.5 Connection Manager Control allows local users to gain privileges via a long command line argument.