CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1370

Multiple SQL injection vulnerabilities in PL/SQL procedures that run with definer rights in Oracle 9i and 10g allow remote attackers to execute arbitrary SQL commands and gain privileges via (1) DBMS_EXPORT_EXTENSION, (2) WK_ACL.GET_ACL, (3) WK_ACL.STORE_ACL, (4) WK_ADM.COMPLETE_ACL_SNAPSHOT, (5) WK_ACL.DELETE_ACLS_WITH_STATEMENT, or (6) DRILOAD.VALIDATE_STMT.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.018

EPSS Ranking 81.8%

CVSS Severity

CVSS v2 Score 7.5

References

Products affected by CVE-2004-1370

Oracle » Application Server » Version: N/A

cpe:2.3:a:oracle:application_server:-
Oracle » Application Server » Version: 0.9.8

cpe:2.3:a:oracle:application_server:0.9.8
Oracle » Application Server » Version: 1.0

cpe:2.3:a:oracle:application_server:1.0
Oracle » Application Server » Version: 1.0.0

cpe:2.3:a:oracle:application_server:1.0.0
Oracle » Application Server » Version: 1.0.1

cpe:2.3:a:oracle:application_server:1.0.1
Oracle » Application Server » Version: 1.0.2

cpe:2.3:a:oracle:application_server:1.0.2
Oracle » Application Server » Version: 1.0.2.0

cpe:2.3:a:oracle:application_server:1.0.2.0
Oracle » Application Server » Version: 1.0.2.1

cpe:2.3:a:oracle:application_server:1.0.2.1
Oracle » Application Server » Version: 1.0.2.1s

cpe:2.3:a:oracle:application_server:1.0.2.1s
Oracle » Application Server » Version: 1.0.2.2

cpe:2.3:a:oracle:application_server:1.0.2.2
Oracle » Application Server » Version: 1.0.2.2.2

cpe:2.3:a:oracle:application_server:1.0.2.2.2
Oracle » Application Server » Version: 10.1.0.2

cpe:2.3:a:oracle:application_server:10.1.0.2
Oracle » Application Server » Version: 10.1.0.3

cpe:2.3:a:oracle:application_server:10.1.0.3
Oracle » Application Server » Version: 10.1.0.3.1

cpe:2.3:a:oracle:application_server:10.1.0.3.1
Oracle » Application Server » Version: 10.1.0.4

cpe:2.3:a:oracle:application_server:10.1.0.4
Oracle » Application Server » Version: 10.1.2

cpe:2.3:a:oracle:application_server:10.1.2
Oracle » Application Server » Version: 10.1.2.0

cpe:2.3:a:oracle:application_server:10.1.2.0
Oracle » Application Server » Version: 10.1.2.0.0

cpe:2.3:a:oracle:application_server:10.1.2.0.0
Oracle » Application Server » Version: 10.1.2.0.1

cpe:2.3:a:oracle:application_server:10.1.2.0.1
Oracle » Application Server » Version: 10.1.2.0.2

cpe:2.3:a:oracle:application_server:10.1.2.0.2
Oracle » Application Server » Version: 10.1.2.1

cpe:2.3:a:oracle:application_server:10.1.2.1
Oracle » Application Server » Version: 10.1.2.1.0

cpe:2.3:a:oracle:application_server:10.1.2.1.0
Oracle » Application Server » Version: 10.1.2.2

cpe:2.3:a:oracle:application_server:10.1.2.2
Oracle » Application Server » Version: 10.1.2.2.0

cpe:2.3:a:oracle:application_server:10.1.2.2.0
Oracle » Application Server » Version: 10.1.2.3

cpe:2.3:a:oracle:application_server:10.1.2.3
Oracle » Application Server » Version: 10.1.2.3.0

cpe:2.3:a:oracle:application_server:10.1.2.3.0
Oracle » Application Server » Version: 10.1.2_.0.1

cpe:2.3:a:oracle:application_server:10.1.2_.0.1
Oracle » Application Server » Version: 10.1.3

cpe:2.3:a:oracle:application_server:10.1.3
Oracle » Application Server » Version: 10.1.3.0

cpe:2.3:a:oracle:application_server:10.1.3.0
Oracle » Application Server » Version: 10.1.3.0.0

cpe:2.3:a:oracle:application_server:10.1.3.0.0
Oracle » Application Server » Version: 10.1.3.1

cpe:2.3:a:oracle:application_server:10.1.3.1
Oracle » Application Server » Version: 10.1.3.1.0

cpe:2.3:a:oracle:application_server:10.1.3.1.0
Oracle » Application Server » Version: 10.1.3.2.0

cpe:2.3:a:oracle:application_server:10.1.3.2.0
Oracle » Application Server » Version: 10.1.3.2.1

cpe:2.3:a:oracle:application_server:10.1.3.2.1
Oracle » Application Server » Version: 10.1.3.3

cpe:2.3:a:oracle:application_server:10.1.3.3
Oracle » Application Server » Version: 10.1.3.3.0

cpe:2.3:a:oracle:application_server:10.1.3.3.0
Oracle » Application Server » Version: 10.1.3.3.3

cpe:2.3:a:oracle:application_server:10.1.3.3.3
Oracle » Application Server » Version: 10.1.3.4

cpe:2.3:a:oracle:application_server:10.1.3.4
Oracle » Application Server » Version: 10.1.4.0

cpe:2.3:a:oracle:application_server:10.1.4.0
Oracle » Application Server » Version: 10.1.4.0.1

cpe:2.3:a:oracle:application_server:10.1.4.0.1
Oracle » Application Server » Version: 10.1.4.1

cpe:2.3:a:oracle:application_server:10.1.4.1
Oracle » Application Server » Version: 10.1.4.1.0

cpe:2.3:a:oracle:application_server:10.1.4.1.0
Oracle » Application Server » Version: 10.1.4.2.0

cpe:2.3:a:oracle:application_server:10.1.4.2.0
Oracle » Application Server » Version: 10.2.0.0

cpe:2.3:a:oracle:application_server:10.2.0.0
Oracle » Application Server » Version: 11i

cpe:2.3:a:oracle:application_server:11i
Oracle » Application Server » Version: 12.1.3

cpe:2.3:a:oracle:application_server:12.1.3
Oracle » Application Server » Version: 3.0.7

cpe:2.3:a:oracle:application_server:3.0.7
Oracle » Application Server » Version: 4.0

cpe:2.3:a:oracle:application_server:4.0
Oracle » Application Server » Version: 4.0.8

cpe:2.3:a:oracle:application_server:4.0.8
Oracle » Application Server » Version: 4.0.8.2

cpe:2.3:a:oracle:application_server:4.0.8.2
Oracle » Application Server » Version: 5.6.2

cpe:2.3:a:oracle:application_server:5.6.2
Oracle » Application Server » Version: 7.0.4.4

cpe:2.3:a:oracle:application_server:7.0.4.4
Oracle » Application Server » Version: 8.1.7

cpe:2.3:a:oracle:application_server:8.1.7
Oracle » Application Server » Version: 9.0

cpe:2.3:a:oracle:application_server:9.0
Oracle » Application Server » Version: 9.0.2

cpe:2.3:a:oracle:application_server:9.0.2
Oracle » Application Server » Version: 9.0.2.0.0

cpe:2.3:a:oracle:application_server:9.0.2.0.0
Oracle » Application Server » Version: 9.0.2.0.1

cpe:2.3:a:oracle:application_server:9.0.2.0.1
Oracle » Application Server » Version: 9.0.2.1

cpe:2.3:a:oracle:application_server:9.0.2.1
Oracle » Application Server » Version: 9.0.2.2

cpe:2.3:a:oracle:application_server:9.0.2.2
Oracle » Application Server » Version: 9.0.2.3

cpe:2.3:a:oracle:application_server:9.0.2.3
Oracle » Application Server » Version: 9.0.3

cpe:2.3:a:oracle:application_server:9.0.3
Oracle » Application Server » Version: 9.0.3.1

cpe:2.3:a:oracle:application_server:9.0.3.1
Oracle » Application Server » Version: 9.0.4

cpe:2.3:a:oracle:application_server:9.0.4
Oracle » Application Server » Version: 9.0.4.0

cpe:2.3:a:oracle:application_server:9.0.4.0
Oracle » Application Server » Version: 9.0.4.1

cpe:2.3:a:oracle:application_server:9.0.4.1
Oracle » Application Server » Version: 9.0.4.2

cpe:2.3:a:oracle:application_server:9.0.4.2
Oracle » Application Server » Version: 9.0.4.3

cpe:2.3:a:oracle:application_server:9.0.4.3
Oracle » Application Server » Version: 9.2.0.6

cpe:2.3:a:oracle:application_server:9.2.0.6
Oracle » Application Server » Version: 9.2.0.7

cpe:2.3:a:oracle:application_server:9.2.0.7
Oracle » Collaboration Suite » Version: release_1

cpe:2.3:a:oracle:collaboration_suite:release_1
Oracle » E-Business Suite » Version: 11.5.1

cpe:2.3:a:oracle:e-business_suite:11.5.1
Oracle » E-Business Suite » Version: 11.5.2

cpe:2.3:a:oracle:e-business_suite:11.5.2
Oracle » E-Business Suite » Version: 11.5.3

cpe:2.3:a:oracle:e-business_suite:11.5.3
Oracle » E-Business Suite » Version: 11.5.4

cpe:2.3:a:oracle:e-business_suite:11.5.4
Oracle » E-Business Suite » Version: 11.5.5

cpe:2.3:a:oracle:e-business_suite:11.5.5
Oracle » E-Business Suite » Version: 11.5.6

cpe:2.3:a:oracle:e-business_suite:11.5.6
Oracle » E-Business Suite » Version: 11.5.7

cpe:2.3:a:oracle:e-business_suite:11.5.7
Oracle » E-Business Suite » Version: 11.5.8

cpe:2.3:a:oracle:e-business_suite:11.5.8
Oracle » E-Business Suite » Version: 11.5.9

cpe:2.3:a:oracle:e-business_suite:11.5.9
Oracle » Enterprise Manager » Version: 9

cpe:2.3:a:oracle:enterprise_manager:9
Oracle » Enterprise Manager » Version: 9.0.1

cpe:2.3:a:oracle:enterprise_manager:9.0.1
Oracle » Enterprise Manager Database Control » Version: 10.1.2

cpe:2.3:a:oracle:enterprise_manager_database_control:10.1.2
Oracle » Enterprise Manager Grid Control » Version: 10.1.0.2

cpe:2.3:a:oracle:enterprise_manager_grid_control:10.1.0.2
Oracle » Oracle10g » Version: enterprise_10.1.0.2

cpe:2.3:a:oracle:oracle10g:enterprise_10.1.0.2
Oracle » Oracle10g » Version: enterprise_9.0.4_.0

cpe:2.3:a:oracle:oracle10g:enterprise_9.0.4_.0
Oracle » Oracle10g » Version: personal_10.1_.0.2

cpe:2.3:a:oracle:oracle10g:personal_10.1_.0.2
Oracle » Oracle10g » Version: personal_9.0.4_.0

cpe:2.3:a:oracle:oracle10g:personal_9.0.4_.0
Oracle » Oracle10g » Version: standard_10.1_.0.2

cpe:2.3:a:oracle:oracle10g:standard_10.1_.0.2
Oracle » Oracle10g » Version: standard_9.0.4_.0

cpe:2.3:a:oracle:oracle10g:standard_9.0.4_.0
Oracle » Oracle8i » Version: enterprise_8.0.5_.0.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.0.5_.0.0
Oracle » Oracle8i » Version: enterprise_8.0.6_.0.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.0.6_.0.0
Oracle » Oracle8i » Version: enterprise_8.0.6_.0.1

cpe:2.3:a:oracle:oracle8i:enterprise_8.0.6_.0.1
Oracle » Oracle8i » Version: enterprise_8.1.5_.0.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5_.0.0
Oracle » Oracle8i » Version: enterprise_8.1.5_.0.2

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5_.0.2
Oracle » Oracle8i » Version: enterprise_8.1.5_.1.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.5_.1.0
Oracle » Oracle8i » Version: enterprise_8.1.6_.0.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.6_.0.0
Oracle » Oracle8i » Version: enterprise_8.1.6_.1.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.6_.1.0
Oracle » Oracle8i » Version: enterprise_8.1.7_.0.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7_.0.0
Oracle » Oracle8i » Version: enterprise_8.1.7_.1.0

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7_.1.0
Oracle » Oracle8i » Version: enterprise_8.1.7_.4

cpe:2.3:a:oracle:oracle8i:enterprise_8.1.7_.4
Oracle » Oracle8i » Version: standard_8.0.6

cpe:2.3:a:oracle:oracle8i:standard_8.0.6
Oracle » Oracle8i » Version: standard_8.0.6_.3

cpe:2.3:a:oracle:oracle8i:standard_8.0.6_.3
Oracle » Oracle8i » Version: standard_8.1.5

cpe:2.3:a:oracle:oracle8i:standard_8.1.5
Oracle » Oracle8i » Version: standard_8.1.6

cpe:2.3:a:oracle:oracle8i:standard_8.1.6
Oracle » Oracle8i » Version: standard_8.1.7

cpe:2.3:a:oracle:oracle8i:standard_8.1.7
Oracle » Oracle8i » Version: standard_8.1.7_.0.0

cpe:2.3:a:oracle:oracle8i:standard_8.1.7_.0.0
Oracle » Oracle8i » Version: standard_8.1.7_.1

cpe:2.3:a:oracle:oracle8i:standard_8.1.7_.1
Oracle » Oracle8i » Version: standard_8.1.7_.4

cpe:2.3:a:oracle:oracle8i:standard_8.1.7_.4
Oracle » Oracle9i » Version: client_9.2.0.1

cpe:2.3:a:oracle:oracle9i:client_9.2.0.1
Oracle » Oracle9i » Version: client_9.2.0.2

cpe:2.3:a:oracle:oracle9i:client_9.2.0.2
Oracle » Oracle9i » Version: enterprise_8.1.7

cpe:2.3:a:oracle:oracle9i:enterprise_8.1.7
Oracle » Oracle9i » Version: enterprise_9.0.1

cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1
Oracle » Oracle9i » Version: enterprise_9.0.1.4

cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.4
Oracle » Oracle9i » Version: enterprise_9.0.1.5

cpe:2.3:a:oracle:oracle9i:enterprise_9.0.1.5
Oracle » Oracle9i » Version: enterprise_9.2.0

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0
Oracle » Oracle9i » Version: enterprise_9.2.0.1

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.1
Oracle » Oracle9i » Version: enterprise_9.2.0.2

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.2
Oracle » Oracle9i » Version: enterprise_9.2.0.3

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.3
Oracle » Oracle9i » Version: enterprise_9.2.0.4

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.4
Oracle » Oracle9i » Version: enterprise_9.2.0.5

cpe:2.3:a:oracle:oracle9i:enterprise_9.2.0.5
Oracle » Oracle9i » Version: personal_8.1.7

cpe:2.3:a:oracle:oracle9i:personal_8.1.7
Oracle » Oracle9i » Version: personal_9.0.1

cpe:2.3:a:oracle:oracle9i:personal_9.0.1
Oracle » Oracle9i » Version: personal_9.0.1.4

cpe:2.3:a:oracle:oracle9i:personal_9.0.1.4
Oracle » Oracle9i » Version: personal_9.0.1.5

cpe:2.3:a:oracle:oracle9i:personal_9.0.1.5
Oracle » Oracle9i » Version: personal_9.2

cpe:2.3:a:oracle:oracle9i:personal_9.2
Oracle » Oracle9i » Version: personal_9.2.0.1

cpe:2.3:a:oracle:oracle9i:personal_9.2.0.1
Oracle » Oracle9i » Version: personal_9.2.0.2

cpe:2.3:a:oracle:oracle9i:personal_9.2.0.2
Oracle » Oracle9i » Version: personal_9.2.0.3

cpe:2.3:a:oracle:oracle9i:personal_9.2.0.3
Oracle » Oracle9i » Version: personal_9.2.0.4

cpe:2.3:a:oracle:oracle9i:personal_9.2.0.4
Oracle » Oracle9i » Version: personal_9.2.0.5

cpe:2.3:a:oracle:oracle9i:personal_9.2.0.5
Oracle » Oracle9i » Version: standard_8.1.7

cpe:2.3:a:oracle:oracle9i:standard_8.1.7
Oracle » Oracle9i » Version: standard_9.0

cpe:2.3:a:oracle:oracle9i:standard_9.0
Oracle » Oracle9i » Version: standard_9.0.1

cpe:2.3:a:oracle:oracle9i:standard_9.0.1
Oracle » Oracle9i » Version: standard_9.0.1.2

cpe:2.3:a:oracle:oracle9i:standard_9.0.1.2
Oracle » Oracle9i » Version: standard_9.0.1.3

cpe:2.3:a:oracle:oracle9i:standard_9.0.1.3
Oracle » Oracle9i » Version: standard_9.0.1.4

cpe:2.3:a:oracle:oracle9i:standard_9.0.1.4
Oracle » Oracle9i » Version: standard_9.0.1.5

cpe:2.3:a:oracle:oracle9i:standard_9.0.1.5
Oracle » Oracle9i » Version: standard_9.0.2

cpe:2.3:a:oracle:oracle9i:standard_9.0.2
Oracle » Oracle9i » Version: standard_9.2

cpe:2.3:a:oracle:oracle9i:standard_9.2
Oracle » Oracle9i » Version: standard_9.2.0.1

cpe:2.3:a:oracle:oracle9i:standard_9.2.0.1
Oracle » Oracle9i » Version: standard_9.2.0.2

cpe:2.3:a:oracle:oracle9i:standard_9.2.0.2
Oracle » Oracle9i » Version: standard_9.2.0.3

cpe:2.3:a:oracle:oracle9i:standard_9.2.0.3
Oracle » Oracle9i » Version: standard_9.2.0.4

cpe:2.3:a:oracle:oracle9i:standard_9.2.0.4
Oracle » Oracle9i » Version: standard_9.2.0.5

cpe:2.3:a:oracle:oracle9i:standard_9.2.0.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1370

Products

Pricing

Contact Us