Oracle Oracle9i Application Server Portal 9.0.2.3

CPE Details

Oracle Oracle9i Application Server Portal 9.0.2.3
oracle
application_server_portal
9.0.2.3
2007-08-23
19h16 +00:00
2008-04-01
14h41 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:oracle:application_server_portal:9.0.2.3:*:*:*:*:*:*:*

Informations

Vendor

oracle

Product

application_server_portal

Version

9.0.2.3

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2007-1506 2007-03-19 21h00 +00:00 Cross-site scripting (XSS) vulnerability in PORTAL.wwv_main.render_warning_screen in the Oracle Portal 10g allows remote attackers to inject arbitrary web script or HTML via the (1) p_oldurl and (2) p_newurl parameters.
4.3
CVE-2003-1193 2005-05-10 02h00 +00:00 Multiple SQL injection vulnerabilities in the Portal DB (1) List of Values (LOVs), (2) Forms, (3) Hierarchy, and (4) XML components packages in Oracle Oracle9i Application Server 9.0.2.00 through 3.0.9.8.5 allow remote attackers to execute arbitrary SQL commands via the URL.
7.5
CVE-2004-1707 2005-02-26 04h00 +00:00 The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.
7.2