CVE-2010-0866

Oracle Database <11.2.0.1 - Info Disclosure

Title source: llm

Description

Unspecified vulnerability in the JavaVM component in Oracle Database 11.1.0.7 and 11.2.0.1 allows remote authenticated users to affect confidentiality, integrity, and availability via unknown vectors.

Exploits (2)

metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/sqli/oracle/jvm_os_code_10g.rb
metasploit WORKING POC
rubypoc
https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/sqli/oracle/jvm_os_code_11g.rb

References (2)

Scores

EPSS 0.5923
EPSS Percentile 98.2%

Details

Status published
Products (2)
oracle/database_server 11.1.0.7
oracle/database_server 11.2.0.1
Published Apr 13, 2010
Tracked Since Feb 18, 2026