Repscan 2.12 - Database Assessment Report
Repscan Report Created: Wed Aug 27 19:00:01 2008

Scanned databases

Database Name Signature Result
ora9208 signatures/ora9208_sig.csv failed
orainfra signatures/orainfra_sig.csv failed
orases signatures/orases_sig.csv failed
ora102 signatures/ora102_sig.csv failed

The following rules violations in ora9208 are found:

Test Priority Handle Description
DB vulnerable against CPUOCT2006_DB09 High CPUOCT2006_DB09 Core RDBMS - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB13 High CPUOCT2006_DB13 Oracle Spatial - Execute on mdsys.sdo_lrs - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB14 High CPUOCT2006_DB14 XMLDB - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB15 High CPUOCT2006_DB15 XMLDB - Execute on xdb.dbms_xdbz - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB17 High CPUOCT2006_DB17 Oracle Spatial - Create session - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUJAN2007_DB02 High CPUJAN2007_DB02 Change Data Capture - Execute on sys.dbms_cdc_subscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB06 Critical CPUJAN2007_DB06 XMLDB - None - HTTP - CVSS 2.3 - Remote with Auth.
DB vulnerable against CPUAPR2007_DB01 Critical CPUAPR2007_DB01 Core RDBMS - None - Network - CVSS 7.0 - Remote without Auth.
DB vulnerable against CPUJUL2007_DB03 High CPUJUL2007_DB03 DataGuard - Execute on SYS.DBMS_DRS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB10 High CPUJUL2007_DB10 PL/SQL - Execute on SYS.DBMS_STANDARD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB16 High CPUJUL2007_DB16 Spatial - Execute on MDSYS.RTREE_IDX - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJUL2007_DB17 High CPUJUL2007_DB17 SQL Compiler - Create Session - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2007_DB02 High CPUOCT2007_DB02 Export - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB04 High CPUOCT2007_DB04 Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB05 High CPUOCT2007_DB05 Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB06 High CPUOCT2007_DB06 Spatial - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB07 High CPUOCT2007_DB07 Spatial - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB08 High CPUOCT2007_DB08 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB09 High CPUOCT2007_DB09 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB10 High CPUOCT2007_DB10 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB11 High CPUOCT2007_DB11 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB12 High CPUOCT2007_DB12 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB13 High CPUOCT2007_DB13 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB14 High CPUOCT2007_DB14 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB15 High CPUOCT2007_DB15 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB16 High CPUOCT2007_DB16 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB17 High CPUOCT2007_DB17 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB18 High CPUOCT2007_DB18 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB19 Critical CPUOCT2007_DB19 Advanced Security Option - None - TCP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB20 Critical CPUOCT2007_DB20 Core RDBMS - None - Network - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB22 Critical CPUOCT2007_DB22 Oracle Net Services - None - GIOP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB23 Critical CPUOCT2007_DB23 XML DB - None - FTP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB27 High CPUOCT2007_DB27 Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB01 High CPUJAN2008_DB01 XML DB - Create Session, Create View - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJAN2008_DB02 High CPUJAN2008_DB02 Advanced Queuing - Execute on SYS.DBMS_PRVTAQIM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB04 High CPUJAN2008_DB04 Oracle Spatial - Execute on MDSYS.SDO_CATALOG - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB05 High CPUJAN2008_DB05 Upgrade/Downgrade - None - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB06 High CPUJAN2008_DB06 Oracle Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB01 High CPUAPR2008_DB01 Advanced Queuing - Execute on SYS.DBMS_AQ - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB03 High CPUAPR2008_DB03 Core RDBMS - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB04 High CPUAPR2008_DB04 Oracle Secure Enterprise Search or Ultrasearch - Execute on WKSYS.WK_QRY or WKSYS.WK_QUERYAPI - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB06 High CPUAPR2008_DB06 Oracle Spatial - Execute on SDO_GEOM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB07 High CPUAPR2008_DB07 Oracle Spatial - Execute on SDO_IDX - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB09 High CPUAPR2008_DB09 Oracle Net Services - None - Oracle Net - CVSS2 4.6 - Local
DB vulnerable against CPUAPR2008_DB10 High CPUAPR2008_DB10 Core RDBMS - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB11 High CPUAPR2008_DB11 Data Pump - Execute on KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB12 High CPUAPR2008_DB12 Export - None - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB13 High CPUAPR2008_DB13 Query Optimizer - Execute on DBMS_STATS - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB01 High CPUJUL2008_DB01 CVE-2008-2607 (DB01) - Advanced Queuing - Execute on SYS.DBMS_AQELM - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJUL2008_DB03 High CPUJUL2008_DB03 CVE-2008-2592 (DB03) - Advanced Replication - Execute on SYS.DBMS_DEFER_SYS - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB09 High CPUJUL2008_DB09 CVE-2008-2611 (DB09) - Core RDBMS - Create Table - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB11 High CPUJUL2008_DB11 CVE-2008-2587 (DB11) - Advanced Replication - read access to trace files - Oracle Net - CVSS2 1.5 - Network
DB vulnerable against vulnerable views High VULNVIEWS Views may be vulnerable because the views were not recompiled


The following rules violations in orainfra are found:

Test Priority Handle Description
DB vulnerable against PS10106_5475032 High PS10106_5475032 TRIGGER - TRIGGER ON TABLE DOES NOT FIREWHEN INSERT ALL IS INCLUDED IN INSERT (unfixed)
DB vulnerable against CPUAPR2005_DB01 High CPUAPR2005_DB01a Change Data Capture - execute on DBMS_CDC_IPUBLISH - Oracle Net - Remote
DB vulnerable against CPUAPR2005_DB02 High CPUAPR2005_DB02a Change Data Capture - execute on DBMS_CDC_{I}SUBSCRIBE - Oracle Net - Remote
DB vulnerable against CPUAPR2005_DB03 High CPUAPR2005_DB03a Data Pump - execute on dbms_metadata - Oracle Net - Remote
DB vulnerable against CPUAPR2005_DB07 High CPUAPR2005_DB07a Internet Directory - None - LDAP - Remote
DB vulnerable against CPUAPR2005_DB09 High CPUAPR2005_DB09a XML Database - none - HTTPS - Remote
DB vulnerable against CPUJUL2005_DB02 High CPUJUL2005_DB02a Oracle OLAP - execute on olapsys - Oracle Net - Remote
DB vulnerable against CPUJUL2005_DB05 High CPUJUL2005_DB05a CORE - ability to create database link - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB01 High CPUOCT2005_DB01 PL/SQL - execute on sys.standard - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB02 High CPUOCT2005_DB02a Change Data Capture - execute on sys.dbms_cdc_impdp - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB03 High CPUOCT2005_DB03a Change Data Capture - execute on sys.dbms_cdc_impdp - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB04 High CPUOCT2005_DB04a Change Data Capture - execute on sys.dbms_cdc_subscribe - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB05 High CPUOCT2005_DB05a Change Data Capture - execute on sys.dbms_cdc_dputil - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB06 High CPUOCT2005_DB06a Data Guard Logical Standby - execute on sys.dbms_logstdby, create procedure - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB07 High CPUOCT2005_DB07a Data Pump Export - execute on sys.kupf$file - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB09 High CPUOCT2005_DB09a Export - execute on sys.dbms_export_extension - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB10 High CPUOCT2005_DB10a Locale - execute on sys.utl_i18n - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB11 High CPUOCT2005_DB11a Materialized Views - execute on sys.dbms_snapshot - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB12 High CPUOCT2005_DB12a Materialized Views - execute on sys.dbms_snapshot - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB13 High CPUOCT2005_DB13a Objects Extension - map methods - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB16 Critical CPUOCT2005_DB16a Oracle Security Service - None - Network - Remote
DB vulnerable against CPUOCT2005_DB18 High CPUOCT2005_DB18a Oracle Spatial - execute on mdsys.sdo_util - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB19 High CPUOCT2005_DB19a Oracle Spatial - execute on mdsys.sdo_join - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB20 High CPUOCT2005_DB20a Oracle Spatial - execute on mdsys.sdo_sam or mdsys.prvt_sam - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB21 High CPUOCT2005_DB21a Oracle Spatial - execute on mdsys.prvt_idx - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB22 High CPUOCT2005_DB22a Oracle Spatial - execute on mdsys.md2 - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB23 High CPUOCT2005_DB23a Oracle Spatial - execute on mdsys.rtree_idx - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB24 High CPUOCT2005_DB24a Oracle Spatial - execute on mdsys.sdo_idx - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB25 High CPUOCT2005_DB25a Oracle Spatial - execute on mdsys.prvt_idx - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB27 High CPUOCT2005_DB27a Security - execute on sys.pbsde - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB28 High CPUOCT2005_DB28a Workspace Manager - execute on sys.lt - Oracle Net - Remote
DB vulnerable against CPUOCT2005_DB29 High CPUOCT2005_DB29a Workspace Manager - execute on sys.lt_ctx_pkg - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB02 High CPUJAN2006_DB02a Change Data Capture - execute on sys.dbms_cdc_utility - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB04 High CPUJAN2006_DB04a Data Pump - execute on sys.kupw$worker - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB05 High CPUJAN2006_DB05a Data Pump Metadata API - execute on sys.dbms_metadata - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB06 High CPUJAN2006_DB06a Data Pump Metadata API - execute on sys.dbms_datapump - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB07 High CPUJAN2006_DB07a Dictionary - alter session, read permission on database log files - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB08 Critical CPUJAN2006_DB08a Net Foundation Layer - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB09 Critical CPUJAN2006_DB09a Net Listener - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB10 Critical CPUJAN2006_DB10a Net Listener - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB12 Critical CPUJAN2006_DB12a Network Communications (RPC) - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB13 Critical CPUJAN2006_DB13a Network Communications (RPC) - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB15 High CPUJAN2006_DB15a Oracle Text - execute on cxtsys.catsearch - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB16 High CPUJAN2006_DB16a Oracle Text - use of a rewrite specification - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB17 High CPUJAN2006_DB17a Oracle Text - ability to create a ctxsys index - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB18 High CPUJAN2006_DB18a Program Interface Network - none - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB19 High CPUJAN2006_DB19a Query Optimizer - execute on sys.outln_pkg - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB20 High CPUJAN2006_DB20a Query Optimizer - none - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB21 High CPUJAN2006_DB21a Security - execute on sys.dbms_fga.add_policy - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB22 High CPUJAN2006_DB22a Streams Apply - execute on sys.dbms_apply_adm_internal - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB23 High CPUJAN2006_DB23a Streams Capture - execute on sys.dbms_capture_adm_internal - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB24 High CPUJAN2006_DB24a Streams Capture - execute on sys.dbms_capture_process - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB25 High CPUJAN2006_DB25a Streams Capture - execute on sys.dbms_cdc_ipublish - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB26 High CPUJAN2006_DB26a Streams Subcomponent - execute on sys.dbms_apply_process - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB28 High CPUJAN2006_DB28a Upgrade/Downgrade - execute on sys.dbms_registry - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB29 High CPUJAN2006_DB29a XML Database - execute on xdb.dbms_xmlschema or xdb.dbms_xmlschema_int - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB01 High CPUAPR2006_DB01a Advanced Replication - execute on sys.dbms_reputil - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB03 High CPUAPR2006_DB03a Advanced Replication - execute on sys.dbms_snapshot_utl - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB05 High CPUAPR2006_DB05a Export - execute on sys.dbms_export_extension - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB06 High CPUAPR2006_DB06a Log Miner - execute on sys.dbms_logmnr_session - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB08 High CPUAPR2006_DB08a Oracle Spatial - create partitioned mdsys table - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB10 High CPUAPR2006_DB10a Oracle Spatial - execute on mdsys.sdo_catalog.update_catalog - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB11 High CPUAPR2006_DB11a Oracle Spatial - execute on mdsys.sdo_lrs_trig_ins - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB12 High CPUAPR2006_DB12a Oracle Spatial - execute on mdsys.sdo_pridx - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB01 High CPUJUL2006_DB01a Change Data Capture (CDC) - execute on sys.dbms_cdc_impdp - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB03 High CPUJUL2006_DB03a Data Pump Metadata API - execute on sys.kupw$worker - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB04 High CPUJUL2006_DB04a Web Distributed Authoring and Versioning (DAV) - None - HTTP - Remote
DB vulnerable against CPUJUL2006_DB06 High CPUJUL2006_DB06a Export - execute on sys.dbms_export_extension - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB07 High CPUJUL2006_DB07a InterMedia - execute on ordsys.ordimgidxmethods - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB08 High CPUJUL2006_DB08a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB09 High CPUJUL2006_DB09a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB10 High CPUJUL2006_DB10a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB11 High CPUJUL2006_DB11a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB12 High CPUJUL2006_DB12a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB13 High CPUJUL2006_DB13a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB14 High CPUJUL2006_DB14a OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB15 High CPUJUL2006_DB15a Oracle ODBC Driver - call procedure with ref cursor - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB16 High CPUJUL2006_DB16a Query Rewrite/Summary Mgmt - execute on sys.dbms_xrwmv - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB17 High CPUJUL2006_DB17a RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB18 High CPUJUL2006_DB18a RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB19 High CPUJUL2006_DB19a RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB20 High CPUJUL2006_DB20a Semantic Analysis - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB21 High CPUJUL2006_DB21a Statistics - execute on sys.dbms_stats - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB22 High CPUJUL2006_DB22a Upgrade/Downgrade - execute on sys.dbms_dbupgrade - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB23 High CPUJUL2006_DB23 XMLDB - None - HTTP - Remote
DB vulnerable against CPUOCT2006_DB01 High CPUOCT2006_DB01 XMLDB - Execute on xdb.dbms_xdbz - Oracle Net - CVSS 4.2 - Remote
DB vulnerable against CPUOCT2006_DB03 High CPUOCT2006_DB03a Oracle Spatial - Execute on mdsys.md2 - Oracle Net - CVSS 3.4 - Remote
DB vulnerable against CPUOCT2006_DB04 High CPUOCT2006_DB04a Change Data Capture (CDC) - Execute on sys.dbms_cdc_impdp - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB05 High CPUOCT2006_DB05a Change Data Capture (CDC) - Execute on sys.dbms_cdc_ipublish - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB06 High CPUOCT2006_DB06a Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB07 High CPUOCT2006_DB07a Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB08 High CPUOCT2006_DB08a Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB09 High CPUOCT2006_DB09a Core RDBMS - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB10 High CPUOCT2006_DB10a Core RDBMS - Execute on sys.dbms_sqltune - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB11 High CPUOCT2006_DB11a Oracle Spatial - Execute on mdsys.sdo_geom - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB12 High CPUOCT2006_DB12a Oracle Spatial - Execute on mdsys.sdo_geor_int - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB13 High CPUOCT2006_DB13a Oracle Spatial - Execute on mdsys.sdo_lrs - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB14 High CPUOCT2006_DB14a XMLDB - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB15 High CPUOCT2006_DB15a XMLDB - Execute on xdb.dbms_xdbz - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB16 High CPUOCT2006_DB16a Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUOCT2006_DB17 High CPUOCT2006_DB17a Oracle Spatial - Create session - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUOCT2006_DB20 High CPUOCT2006_DB20a Oracle Spatial - Execute on mdsys.sdo_3gl - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2006_DB21 High CPUOCT2006_DB21a Oracle Spatial - Execute on mdsys.sdo_cs - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2006_DB22 High CPUOCT2006_DB22a Oracle Spatial - Execute on mdsys.sdo_geom - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB01 High CPUJAN2007_DB01a Advanced Queuing - Execute on sys.dbms_aq - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB02 High CPUJAN2007_DB02a Change Data Capture - Execute on sys.dbms_cdc_subscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB03 High CPUJAN2007_DB03a Data Guard - Execute on sys.dbms_drs - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB05 High CPUJAN2007_DB05a Oracle Spatial - Execute on mdsys.md - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB06 Critical CPUJAN2007_DB06a XMLDB - None - HTTP - CVSS 2.3 - Remote with Auth.
DB vulnerable against CPUJAN2007_DB07 High CPUJAN2007_DB07a Advanced Replication - Execute on sys.dbms_repcat_untrusted - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB08 High CPUJAN2007_DB08a Export - Execute on sys.dbms_logrep_util - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB09 High CPUJAN2007_DB09a Oracle Streams - Execute on sys.dbms_capture_adm_internal - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB11 Low CPUJAN2007_DB11a Export - Ability to run expdp or impdp programs - Local - CVSS 0.0 - Local
DB vulnerable against CPUJAN2007_DB12 Low CPUJAN2007_DB12a NLS Runtime - Ability to run lmsgen program - Local - CVSS 0.0 - Local
DB vulnerable against CPUJAN2007_DB14 Low CPUJAN2007_DB14 Oracle Text - Ability to run ctxkbtc program - Local - CVSS 0.0 - Local
DB vulnerable against CPUJAN2007_DB15 Low CPUJAN2007_DB15a Oracle Text - Ability to run ctxload program - Local - CVSS 0.0 - Local
DB vulnerable against CPUAPR2007_DB01 Critical CPUAPR2007_DB01a Core RDBMS - None - Network - CVSS 7.0 - Remote without Auth.
DB vulnerable against CPUAPR2007_DB03 High CPUAPR2007_DB03a Core RDBMS - Create session, alter package, create table and create type - Local - CVSS 2.9 - Local
DB vulnerable against CPUAPR2007_DB04 High CPUAPR2007_DB04a Advanced Queuing - Execute on SYS.DBMS_ADMAQ_SYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB05 High CPUAPR2007_DB05a Authentication - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB07 High CPUAPR2007_DB07a Upgrade/Downgrade - Execute on SYS.DBMS_UPGRADE_INTERNAL - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB08 High CPUAPR2007_DB08a Change Data Capture (CDC) - Execute on DBMS_CDC_IPUBLISH - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUAPR2007_DB09 High CPUAPR2007_DB09a Change Data Capture (CDC) - Execute on DBMS_CDC_PUBLISH - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUAPR2007_DB10 Low CPUAPR2007_DB10a Advanced Replication - Execute on SYS.DBMS_SNAP_INTERNAL - Oracle Net - CVSS 0.0 - Remote
DB vulnerable against CPUJUL2007_DB01 High CPUJUL2007_DB01a JavaVM - Execute on DBMS_JAVA_TEST - Oracle Net - CVSS 4.2 - Remote
DB vulnerable against CPUJUL2007_DB02 High CPUJUL2007_DB02a Advanced Queuing - Execute on SYS.DBMS_PRVTAQIS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB03 High CPUJUL2007_DB03a DataGuard - Execute on SYS.DBMS_DRS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB04 High CPUJUL2007_DB04a Oracle Data Mining - Execute priv on DMSYS.DMP_SYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB05 High CPUJUL2007_DB05a Oracle Text - Create Session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB06 High CPUJUL2007_DB06a Oracle Text - Execute on CTXSYS.DRVXMD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB07 High CPUJUL2007_DB07a Oracle Text - Execute on CTXSYS.DRI_MOVE_CTXSYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB08 High CPUJUL2007_DB08a Oracle Text - Execute on CTXSYS.DRVXMD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB09 High CPUJUL2007_DB09a Oracle Text - Create Session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB10 High CPUJUL2007_DB10a PL/SQL - Execute on SYS.DBMS_STANDARD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB12 High CPUJUL2007_DB12a Spatial - Execute on MDSYS.MD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB14 High CPUJUL2007_DB14a JavaVM - None - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUJUL2007_DB15 High CPUJUL2007_DB15a Spatial - Execute on MDSYS.SDO_GEOR_INT - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJUL2007_DB16 High CPUJUL2007_DB16a Spatial - Execute on MDSYS.RTREE_IDX - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJUL2007_DB17 High CPUJUL2007_DB17a SQL Compiler - Create Session - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2007_DB01 High CPUOCT2007_DB01a Import - Create Procedure - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUOCT2007_DB02 High CPUOCT2007_DB02a Export - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB03 High CPUOCT2007_DB03a Oracle Text - Execute on CTX_DOC - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB04 High CPUOCT2007_DB04a Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB05 High CPUOCT2007_DB05a Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB07 High CPUOCT2007_DB07a Spatial - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB08 High CPUOCT2007_DB08 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB09 High CPUOCT2007_DB09 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB10 High CPUOCT2007_DB10 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB11 High CPUOCT2007_DB11 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB12 High CPUOCT2007_DB12 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB13 High CPUOCT2007_DB13 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB14 High CPUOCT2007_DB14 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB15 High CPUOCT2007_DB15 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB16 High CPUOCT2007_DB16 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB17 High CPUOCT2007_DB17 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB18 High CPUOCT2007_DB18 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB19 Critical CPUOCT2007_DB19a Advanced Security Option - None - TCP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB20 Critical CPUOCT2007_DB20a Core RDBMS - None - Network - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB22 Critical CPUOCT2007_DB22a Oracle Net Services - None - GIOP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB23 Critical CPUOCT2007_DB23a XML DB - None - FTP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB25 High CPUOCT2007_DB25a Advanced Queuing - Execute on SYS.DBMS_AQADM - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUOCT2007_DB27 High CPUOCT2007_DB27a Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB01 High CPUJAN2008_DB01a XML DB - Create Session, Create View - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJAN2008_DB02 High CPUJAN2008_DB02a Advanced Queuing - Execute on SYS.DBMS_PRVTAQIM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB03 High CPUJAN2008_DB03a Advanced Queuing - Execute on SYS.DBMS_PRVTAQIP - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB04 High CPUJAN2008_DB04a Oracle Spatial - Execute on MDSYS.SDO_CATALOG - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB05 High CPUJAN2008_DB05a Upgrade/Downgrade - None - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB06 High CPUJAN2008_DB06a Oracle Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB07 High CPUJAN2008_DB07a Oracle Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB01 High CPUAPR2008_DB01a Advanced Queuing - Execute on SYS.DBMS_AQ - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB02 High CPUAPR2008_DB02a Change Data Capture - Execute on DBMS_CDC_UTILITY - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB03 High CPUAPR2008_DB03a Core RDBMS - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB04 High CPUAPR2008_DB04a Oracle Secure Enterprise Search or Ultrasearch - Execute on WKSYS.WK_QRY or WKSYS.WK_QUERYAPI - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB05 High CPUAPR2008_DB05a Oracle Spatial - Execute on SDO_UTIL - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB06 High CPUAPR2008_DB06a Oracle Spatial - Execute on SDO_GEOM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB07 High CPUAPR2008_DB07a Oracle Spatial - Execute on SDO_IDX - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB09 High CPUAPR2008_DB09a Oracle Net Services - None - Oracle Net - CVSS2 4.6 - Local
DB vulnerable against CPUAPR2008_DB10 High CPUAPR2008_DB10a Core RDBMS - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB11 High CPUAPR2008_DB11a Data Pump - Execute on KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB12 High CPUAPR2008_DB12a Export - None - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB13 High CPUAPR2008_DB13a Query Optimizer - Execute on DBMS_STATS - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB14 High CPUAPR2008_DB14a Audit - Execute on DBMS_STATS - Insert on a table subject to fine grained auditing - Oracle Net - CVSS2 3.5 - Network
DB vulnerable against CPUAPR2008_DB15 High CPUAPR2008_DB15a Advanced Queuing - Execute on SYS.DBMS_AQJMS_INTERNAL - Oracle Net - CVSS2 2.1 - Network
DB vulnerable against CPUJUL2008_DB01 High CPUJUL2008_DB01a CVE-2008-2607 (DB01) - Advanced Queuing - Execute on SYS.DBMS_AQELM - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJUL2008_DB03 High CPUJUL2008_DB03a CVE-2008-2592 (DB03) - Advanced Replication - Execute on SYS.DBMS_DEFER_SYS - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB06 High CPUJUL2008_DB06a CVE-2008-2600 (DB06) - Oracle Spatial - Execute on MDSYS.SDO_TOPO_MAP - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB07 High CPUJUL2008_DB07a CVE-2008-2602 (DB07) - Data Pump - Create Session, IMP_FULL_DATABASE role - Oracle Net - CVSS2 4.6 - Network
DB vulnerable against CPUJUL2008_DB09 High CPUJUL2008_DB09a CVE-2008-2611 (DB09) - Core RDBMS - Create Table - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB10 High CPUJUL2008_DB10a CVE-2008-2608 (DB10) - Data Pump - Execute on SYS.KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB11 High CPUJUL2008_DB11a CVE-2008-2587 (DB11) - Advanced Replication - read access to trace files - Oracle Net - CVSS2 1.5 - Network
DB vulnerable against vulnerable views High VULNVIEWSa Views may be vulnerable because the views were not recompiled


The following rules violations in orases are found:

Test Priority Handle Description
DB vulnerable against PS10106_5475032 High PS10106_5475032 TRIGGER - TRIGGER ON TABLE DOES NOT FIREWHEN INSERT ALL IS INCLUDED IN INSERT (unfixed)
DB vulnerable against CPUJAN2006_DB02 High CPUJAN2006_DB02 Change Data Capture - execute on sys.dbms_cdc_utility - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB04 High CPUJAN2006_DB04 Data Pump - execute on sys.kupw$worker - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB05 High CPUJAN2006_DB05 Data Pump Metadata API - execute on sys.dbms_metadata - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB06 High CPUJAN2006_DB06 Data Pump Metadata API - execute on sys.dbms_datapump - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB07 High CPUJAN2006_DB07 Dictionary - alter session, read permission on database log files - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB09 Critical CPUJAN2006_DB09 Net Listener - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB10 Critical CPUJAN2006_DB10 Net Listener - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB12 Critical CPUJAN2006_DB12 Network Communications (RPC) - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB13 Critical CPUJAN2006_DB13 Network Communications (RPC) - network access to a Listener - Network - Remote without Auth.
DB vulnerable against CPUJAN2006_DB15 High CPUJAN2006_DB15 Oracle Text - execute on cxtsys.catsearch - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB16 High CPUJAN2006_DB16 Oracle Text - use of a rewrite specification - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB17 High CPUJAN2006_DB17 Oracle Text - ability to create a ctxsys index - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB18 High CPUJAN2006_DB18 Program Interface Network - none - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB19 High CPUJAN2006_DB19 Query Optimizer - execute on sys.outln_pkg - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB22 High CPUJAN2006_DB22 Streams Apply - execute on sys.dbms_apply_adm_internal - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB23 High CPUJAN2006_DB23 Streams Capture - execute on sys.dbms_capture_adm_internal - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB24 High CPUJAN2006_DB24 Streams Capture - execute on sys.dbms_capture_process - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB25 High CPUJAN2006_DB25 Streams Capture - execute on sys.dbms_cdc_ipublish - Oracle Net - Remote
DB vulnerable against CPUJAN2006_DB26 High CPUJAN2006_DB26 Streams Subcomponent - execute on sys.dbms_apply_process - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB01 High CPUAPR2006_DB01 Advanced Replication - execute on sys.dbms_reputil - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB05 High CPUAPR2006_DB05 Export - execute on sys.dbms_export_extension - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB06 High CPUAPR2006_DB06 Log Miner - execute on sys.dbms_logmnr_session - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB10 High CPUAPR2006_DB10 Oracle Spatial - execute on mdsys.sdo_catalog.update_catalog - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB11 High CPUAPR2006_DB11 Oracle Spatial - execute on mdsys.sdo_lrs_trig_ins - Oracle Net - Remote
DB vulnerable against CPUAPR2006_DB12 High CPUAPR2006_DB12 Oracle Spatial - execute on mdsys.sdo_pridx - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB01 High CPUJUL2006_DB01 Change Data Capture (CDC) - execute on sys.dbms_cdc_impdp - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB03 High CPUJUL2006_DB03 Data Pump Metadata API - execute on sys.kupw$worker - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB06 High CPUJUL2006_DB06 Export - execute on sys.dbms_export_extension - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB08 High CPUJUL2006_DB08 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB09 High CPUJUL2006_DB09 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB10 High CPUJUL2006_DB10 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB11 High CPUJUL2006_DB11 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB12 High CPUJUL2006_DB12 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB13 High CPUJUL2006_DB13 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB14 High CPUJUL2006_DB14 OCI - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB16 High CPUJUL2006_DB16 Query Rewrite/Summary Mgmt - execute on sys.dbms_xrwmv - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB17 High CPUJUL2006_DB17 RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB18 High CPUJUL2006_DB18 RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB19 High CPUJUL2006_DB19 RPC - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB20 High CPUJUL2006_DB20 Semantic Analysis - None - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB21 High CPUJUL2006_DB21 Statistics - execute on sys.dbms_stats - Oracle Net - Remote
DB vulnerable against CPUJUL2006_DB22 High CPUJUL2006_DB22 Upgrade/Downgrade - execute on sys.dbms_dbupgrade - Oracle Net - Remote
DB vulnerable against CPUOCT2006_DB03 High CPUOCT2006_DB03 Oracle Spatial - Execute on mdsys.md2 - Oracle Net - CVSS 3.4 - Remote
DB vulnerable against CPUOCT2006_DB04 High CPUOCT2006_DB04 Change Data Capture (CDC) - Execute on sys.dbms_cdc_impdp - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB05 High CPUOCT2006_DB05 Change Data Capture (CDC) - Execute on sys.dbms_cdc_ipublish - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB06 High CPUOCT2006_DB06 Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB07 High CPUOCT2006_DB07 Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB08 High CPUOCT2006_DB08 Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB09 High CPUOCT2006_DB09 Core RDBMS - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB10 High CPUOCT2006_DB10 Core RDBMS - Execute on sys.dbms_sqltune - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB11 High CPUOCT2006_DB11 Oracle Spatial - Execute on mdsys.sdo_geom - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB12 High CPUOCT2006_DB12 Oracle Spatial - Execute on mdsys.sdo_geor_int - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB13 High CPUOCT2006_DB13 Oracle Spatial - Execute on mdsys.sdo_lrs - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB14 High CPUOCT2006_DB14 XMLDB - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB15 High CPUOCT2006_DB15 XMLDB - Execute on xdb.dbms_xdbz - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUOCT2006_DB16 High CPUOCT2006_DB16 Change Data Capture (CDC) - Execute on sys.dbms_cdc_isubscribe - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUOCT2006_DB17 High CPUOCT2006_DB17 Oracle Spatial - Create session - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUJAN2007_DB01 High CPUJAN2007_DB01 Advanced Queuing - Execute on sys.dbms_aq - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB02 High CPUJAN2007_DB02 Change Data Capture - Execute on sys.dbms_cdc_subscribe - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJAN2007_DB06 Critical CPUJAN2007_DB06 XMLDB - None - HTTP - CVSS 2.3 - Remote with Auth.
DB vulnerable against CPUJAN2007_DB07 High CPUJAN2007_DB07 Advanced Replication - Execute on sys.dbms_repcat_untrusted - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB08 High CPUJAN2007_DB08 Export - Execute on sys.dbms_logrep_util - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB09 High CPUJAN2007_DB09 Oracle Streams - Execute on sys.dbms_capture_adm_internal - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJAN2007_DB12 Low CPUJAN2007_DB12 NLS Runtime - Ability to run lmsgen program - Local - CVSS 0.0 - Local
DB vulnerable against CPUJAN2007_DB14 Low CPUJAN2007_DB14 Oracle Text - Ability to run ctxkbtc program - Local - CVSS 0.0 - Local
DB vulnerable against CPUJAN2007_DB15 Low CPUJAN2007_DB15 Oracle Text - Ability to run ctxload program - Local - CVSS 0.0 - Local
DB vulnerable against CPUAPR2007_DB01 Critical CPUAPR2007_DB01 Core RDBMS - None - Network - CVSS 7.0 - Remote without Auth.
DB vulnerable against CPUAPR2007_DB04 High CPUAPR2007_DB04 Advanced Queuing - Execute on SYS.DBMS_ADMAQ_SYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB05 High CPUAPR2007_DB05 Authentication - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB07 High CPUAPR2007_DB07 Upgrade/Downgrade - Execute on SYS.DBMS_UPGRADE_INTERNAL - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB08 High CPUAPR2007_DB08 Change Data Capture (CDC) - Execute on DBMS_CDC_IPUBLISH - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUAPR2007_DB09 High CPUAPR2007_DB09 Change Data Capture (CDC) - Execute on DBMS_CDC_PUBLISH - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUAPR2007_DB10 Low CPUAPR2007_DB10 Advanced Replication - Execute on SYS.DBMS_SNAP_INTERNAL - Oracle Net - CVSS 0.0 - Remote
DB vulnerable against CPUJUL2007_DB01 High CPUJUL2007_DB01 JavaVM - Execute on DBMS_JAVA_TEST - Oracle Net - CVSS 4.2 - Remote
DB vulnerable against CPUJUL2007_DB02 High CPUJUL2007_DB02 Advanced Queuing - Execute on SYS.DBMS_PRVTAQIS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB03 High CPUJUL2007_DB03 DataGuard - Execute on SYS.DBMS_DRS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB04 High CPUJUL2007_DB04 Oracle Data Mining - Execute priv on DMSYS.DMP_SYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB05 High CPUJUL2007_DB05 Oracle Text - Create Session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB06 High CPUJUL2007_DB06 Oracle Text - Execute on CTXSYS.DRVXMD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB07 High CPUJUL2007_DB07 Oracle Text - Execute on CTXSYS.DRI_MOVE_CTXSYS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB08 High CPUJUL2007_DB08 Oracle Text - Execute on CTXSYS.DRVXMD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB09 High CPUJUL2007_DB09 Oracle Text - Create Session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB10 High CPUJUL2007_DB10 PL/SQL - Execute on SYS.DBMS_STANDARD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB12 High CPUJUL2007_DB12 Spatial - Execute on MDSYS.MD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB14 High CPUJUL2007_DB14 JavaVM - None - Oracle Net - CVSS 2.2 - Remote
DB vulnerable against CPUJUL2007_DB15 High CPUJUL2007_DB15 Spatial - Execute on MDSYS.SDO_GEOR_INT - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJUL2007_DB16 High CPUJUL2007_DB16 Spatial - Execute on MDSYS.RTREE_IDX - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUJUL2007_DB17 High CPUJUL2007_DB17 SQL Compiler - Create Session - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2007_DB01 High CPUOCT2007_DB01 Import - Create Procedure - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUOCT2007_DB02 High CPUOCT2007_DB02 Export - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB03 High CPUOCT2007_DB03 Oracle Text - Execute on CTX_DOC - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB04 High CPUOCT2007_DB04 Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB05 High CPUOCT2007_DB05 Oracle Text - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB07 High CPUOCT2007_DB07 Spatial - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB08 High CPUOCT2007_DB08 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB09 High CPUOCT2007_DB09 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB10 High CPUOCT2007_DB10 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB11 High CPUOCT2007_DB11 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB12 High CPUOCT2007_DB12 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB13 High CPUOCT2007_DB13 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB14 High CPUOCT2007_DB14 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB15 High CPUOCT2007_DB15 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB16 High CPUOCT2007_DB16 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB17 High CPUOCT2007_DB17 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB18 High CPUOCT2007_DB18 Workspace Manager - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB19 Critical CPUOCT2007_DB19 Advanced Security Option - None - TCP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB20 Critical CPUOCT2007_DB20 Core RDBMS - None - Network - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB22 Critical CPUOCT2007_DB22 Oracle Net Services - None - GIOP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB23 Critical CPUOCT2007_DB23 XML DB - None - FTP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB25 High CPUOCT2007_DB25 Advanced Queuing - Execute on SYS.DBMS_AQADM - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUOCT2007_DB27 High CPUOCT2007_DB27 Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB01 High CPUJAN2008_DB01 XML DB - Create Session, Create View - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJAN2008_DB02 High CPUJAN2008_DB02 Advanced Queuing - Execute on SYS.DBMS_PRVTAQIM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB03 High CPUJAN2008_DB03 Advanced Queuing - Execute on SYS.DBMS_PRVTAQIP - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB04 High CPUJAN2008_DB04 Oracle Spatial - Execute on MDSYS.SDO_CATALOG - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB05 High CPUJAN2008_DB05 Upgrade/Downgrade - None - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB06 High CPUJAN2008_DB06 Oracle Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB07 High CPUJAN2008_DB07 Oracle Spatial - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB01 High CPUAPR2008_DB01 Advanced Queuing - Execute on SYS.DBMS_AQ - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB02 High CPUAPR2008_DB02 Change Data Capture - Execute on DBMS_CDC_UTILITY - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB03 High CPUAPR2008_DB03 Core RDBMS - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB05 High CPUAPR2008_DB05 Oracle Spatial - Execute on SDO_UTIL - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB06 High CPUAPR2008_DB06 Oracle Spatial - Execute on SDO_GEOM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB07 High CPUAPR2008_DB07 Oracle Spatial - Execute on SDO_IDX - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB09 High CPUAPR2008_DB09 Oracle Net Services - None - Oracle Net - CVSS2 4.6 - Local
DB vulnerable against CPUAPR2008_DB10 High CPUAPR2008_DB10 Core RDBMS - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB11 High CPUAPR2008_DB11 Data Pump - Execute on KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB12 High CPUAPR2008_DB12 Export - None - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB13 High CPUAPR2008_DB13 Query Optimizer - Execute on DBMS_STATS - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB14 High CPUAPR2008_DB14 Audit - Execute on DBMS_STATS - Insert on a table subject to fine grained auditing - Oracle Net - CVSS2 3.5 - Network
DB vulnerable against CPUAPR2008_DB15 High CPUAPR2008_DB15 Advanced Queuing - Execute on SYS.DBMS_AQJMS_INTERNAL - Oracle Net - CVSS2 2.1 - Network
DB vulnerable against CPUJUL2008_DB01 High CPUJUL2008_DB01 CVE-2008-2607 (DB01) - Advanced Queuing - Execute on SYS.DBMS_AQELM - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJUL2008_DB03 High CPUJUL2008_DB03 CVE-2008-2592 (DB03) - Advanced Replication - Execute on SYS.DBMS_DEFER_SYS - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB06 High CPUJUL2008_DB06 CVE-2008-2600 (DB06) - Oracle Spatial - Execute on MDSYS.SDO_TOPO_MAP - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB07 High CPUJUL2008_DB07 CVE-2008-2602 (DB07) - Data Pump - Create Session, IMP_FULL_DATABASE role - Oracle Net - CVSS2 4.6 - Network
DB vulnerable against CPUJUL2008_DB09 High CPUJUL2008_DB09 CVE-2008-2611 (DB09) - Core RDBMS - Create Table - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB10 High CPUJUL2008_DB10 CVE-2008-2608 (DB10) - Data Pump - Execute on SYS.KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB11 High CPUJUL2008_DB11 CVE-2008-2587 (DB11) - Advanced Replication - read access to trace files - Oracle Net - CVSS2 1.5 - Network
DB vulnerable against vulnerable views High VULNVIEWS Views may be vulnerable because the views were not recompiled


The following rules violations in ora102 are found:

Test Priority Handle Description
DB vulnerable against PS10204_4596532 Medium PS10204_4596532 Audit - Wrong results from V$XML_AUDIT_TRAIL
DB vulnerable against PS10204_5078627 Medium PS10204_5078627 Audit - Audit sessionid is zero for jobs invoked by job scheduler
DB vulnerable against PS10204_5081050 Low PS10204_5081050 Audit - No audit for logout action with audit_trail=xml
DB vulnerable against PS10204_6041317 Low PS10204_6041317 Audit - OERI when inserting ASCII 0x0 into CHAR/VARCHAR2 with AUDIT_TRAIL=DB_EXTENDED
DB vulnerable against PS10204_5860927 High PS10204_5860927 FGA - FGA records are not written for view on remote table
DB vulnerable against PS10204_5938452 High PS10204_5938452 VPD - VPD does not work when a CURSOR expression is used against a synonym
DB vulnerable against PS10204_5051432 Medium PS10204_5051432 DBMS_LOB does not execute with the privileges of the calling procedure
DB vulnerable against PS10204_5254198 High PS10204_5254198 ALTER USER SYS IDENTIFIED BY VALUES does not change the password file
DB vulnerable against PS10204_4304023 Low PS10204_4304023 Logical Standby does not support OLS properly
DB vulnerable against PS10204_5162768 Low PS10204_5162768 OLS - Wrong results using more than one OLS policy on a table
DB vulnerable against CPUAPR2007_DB05 High CPUAPR2007_DB05 Authentication - Create session - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUAPR2007_DB06 High CPUAPR2007_DB06 Oracle Streams - Execute on SYS.DBMS_APPLY_USER_AGENT - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB01 High CPUJUL2007_DB01 JavaVM - Execute on DBMS_JAVA_TEST - Oracle Net - CVSS 4.2 - Remote
DB vulnerable against CPUJUL2007_DB03 High CPUJUL2007_DB03 DataGuard - Execute on SYS.DBMS_DRS - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB10 High CPUJUL2007_DB10 PL/SQL - Execute on SYS.DBMS_STANDARD - Oracle Net - CVSS 2.8 - Remote
DB vulnerable against CPUJUL2007_DB13 High CPUJUL2007_DB13 Progam Interface - None - Oracle Net - CVSS 2.3 - Remote
DB vulnerable against CPUJUL2007_DB17 High CPUJUL2007_DB17 SQL Compiler - Create Session - Oracle Net - CVSS 1.4 - Remote
DB vulnerable against CPUOCT2007_DB02 High CPUOCT2007_DB02 Export - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUOCT2007_DB19 Critical CPUOCT2007_DB19 Advanced Security Option - None - TCP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB20 Critical CPUOCT2007_DB20 Core RDBMS - None - Network - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB22 Critical CPUOCT2007_DB22 Oracle Net Services - None - GIOP - CVSS2 5.0 - Network without Auth.
DB vulnerable against CPUOCT2007_DB26 High CPUOCT2007_DB26 SQL Execution - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJAN2008_DB02 High CPUJAN2008_DB02 Advanced Queuing - Execute on SYS.DBMS_PRVTAQIM - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJAN2008_DB05 High CPUJAN2008_DB05 Upgrade/Downgrade - None - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB01 High CPUAPR2008_DB01 Advanced Queuing - Execute on SYS.DBMS_AQ - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB02 High CPUAPR2008_DB02 Change Data Capture - Execute on DBMS_CDC_UTILITY - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB03 High CPUAPR2008_DB03 Core RDBMS - Create Session - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUAPR2008_DB09 High CPUAPR2008_DB09 Oracle Net Services - None - Oracle Net - CVSS2 4.6 - Local
DB vulnerable against CPUAPR2008_DB10 High CPUAPR2008_DB10 Core RDBMS - Create Session - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB11 High CPUAPR2008_DB11 Data Pump - Execute on KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB12 High CPUAPR2008_DB12 Export - None - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB13 High CPUAPR2008_DB13 Query Optimizer - Execute on DBMS_STATS - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUAPR2008_DB14 High CPUAPR2008_DB14 Audit - Execute on DBMS_STATS - Insert on a table subject to fine grained auditing - Oracle Net - CVSS2 3.5 - Network
DB vulnerable against CPUJUL2008_DB01 High CPUJUL2008_DB01 CVE-2008-2607 (DB01) - Advanced Queuing - Execute on SYS.DBMS_AQELM - Oracle Net - CVSS2 6.5 - Network
DB vulnerable against CPUJUL2008_DB02 High CPUJUL2008_DB02 CVE-2008-2613 (DB02) - Database Scheduler - oinstall - OS group - local - CVSS2 6.0 - Local
DB vulnerable against CPUJUL2008_DB03 High CPUJUL2008_DB03 CVE-2008-2592 (DB03) - Advanced Replication - Execute on SYS.DBMS_DEFER_SYS - Oracle Net - CVSS2 5.5 - Network
DB vulnerable against CPUJUL2008_DB07 High CPUJUL2008_DB07 CVE-2008-2602 (DB07) - Data Pump - Create Session, IMP_FULL_DATABASE role - Oracle Net - CVSS2 4.6 - Network
DB vulnerable against CPUJUL2008_DB09 High CPUJUL2008_DB09 CVE-2008-2611 (DB09) - Core RDBMS - Create Table - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB10 High CPUJUL2008_DB10 CVE-2008-2608 (DB10) - Data Pump - Execute on SYS.KUPF$FILE_INT - Oracle Net - CVSS2 4.0 - Network
DB vulnerable against CPUJUL2008_DB11 High CPUJUL2008_DB11 CVE-2008-2587 (DB11) - Advanced Replication - read access to trace files - Oracle Net - CVSS2 1.5 - Network
DB vulnerable against vulnerable views High VULNVIEWS Views may be vulnerable because the views were not recompiled


(c) 2004-2008 by Red-Database-Security GmbH