CVE-2009-1019

Oracle Database - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the Network Authentication component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.4, and 11.1.0.7 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Dennis Yurichev · c++remotemultiple

https://www.exploit-db.com/exploits/33081

View Code ZIP pw:eip

References (7)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/51748

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/35680

[Vendor Advisory] http://www.oracle.com/technetwork/topics/security/cpujul2009-091332.html

[Third Party Advisory, VDB Entry] http://osvdb.org/55884

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id?1022560

[Third Party Advisory] http://secunia.com/advisories/35776

[Third Party Advisory] http://www.vupen.com/english/advisories/2009/1900

Scores

EPSS 0.0950

EPSS Percentile 92.9%

Details

Status published

Products (5)

oracle/database_server 9.2.0.8

oracle/database_server 9.2.0.8dv

oracle/database_server 10.1.0.4

oracle/database_server 10.1.0.5

oracle/database_server 11.1.0.7

Published Jul 14, 2009

Tracked Since Feb 18, 2026