CVE-1999-0380 Arbitrary File Access SLMail CVE-1999-0449 DoS Microsoft IIS CVE-1999-0407 Password attack Microsoft IIS CVE-1999-0448 Logging bypass Microsoft ISS and Apache CVE-1999-0449 DoS Microsoft ISS CVE-1999-0450 Information Disclosure Perl CVE-1999-0467 Arbitrary File Read Webcom CVE-1999-0700 Buffer Overflow Microsoft RAS CVE-1999-0715 Buffer Overflow Microsoft RAS CVE-1999-1050 Arbitrary File Read formhandler.cgi CVE-1999-1030 Buffer Overflow Microsoft FP CVE-1999-1031 Buffer Overflow Microsoft FP CVE-1999-1051 Arbitrary File Read formhandler.cgi CVE-1999-1130 Source Code Access Netscape Enterprise Server CVE-1999-1265 Dos SLMail CVE-1999-1376 Buffer overflow Microsoft Frontpage CVE-1999-1397 Information Disclosure Microsoft Index Server CVE-1999-1538 Information Disclosure Microsoft IIS CVE-2000-0097 Arbitrary File Read Microsoft IIS CVE-2000-0098 Information Disclosure Microsoft IIS CVE-2000-0169 Arbitrary Command Execution Oracle CVE-2000-0180 Arbitrary File Access Sojourn CVE-2000-0302 Information Disclosure Microsoft IIS/Index Server CVE-2000-0331 Buffer Overflow Microsoft CVE-2000-0398 Buffer Overflow Rockliffe CVE-2000-0401 Buffer Overflow PDGSoft CVE-2000-0403 DoS Microsoft Computer Browser Service CVE-2000-0422 Buffer Overflow Netwin Dmailweb CVE-2000-0425 Buffer Overflow L-Soft Listserv CVE-2000-0429 Backdoor Password Cart32 CVE-2000-0457 Information Disclosure Microsoft IIS CVE-2000-0623 Buffer Overflow O'Rielly Web Server CVE-2000-0826 Buffer Overflow Mobius Document Direct CVE-2000-0827 Buffer Overflow Mobius Document Direct CVE-2000-0828 Buffer Overflow Mobius Document Direct CVE-2000-0868 Source Access SuSE/Apache CVE-2000-0869 Information Disclosure Apache/WebDAV CVE-2000-0885 Buffer Overflow Microsoft Network Monitor CVE-2000-0951 Information Disclosure Microsoft IIS/WebDAV CVE-2000-1081 Buffer Overflow Microsoft SQL Server CVE-2000-1082 Buffer Overflow Microsoft SQL Server CVE-2000-1083 Buffer Overflow Microsoft SQL Server CVE-2000-1084 Buffer Overflow Microsoft SQL Server CVE-2001-0003 Password Leak Microsoft IE CVE-2001-0244 Buffer Overflow Microsoft IIS/Index Server CVE-2001-0245 Arbitrary File Read Microsoft IIS/Index Server CVE-2001-0846 Arbitrary File Read Lotus Domino CVE-2001-0847 Authorization Bypass Lotus Domino CVE-2001-1215 Format String Vulnerability PFingerd CVE-2001-1216 Buffer Overflow Oracle CVE-2001-1217 Arbitrary File Read Oracle CVE-2001-1567 Authorization Bypass IBM Domino CVE-2002-0449 Buffer Overflow Talentsoft Web CVE-2002-0450 Buffer Overflow Talentsoft Web CVE-2002-0559 Multiple Buffer Overflows Oracle CVE-2002-0560 SQLi Oracle CVE-2002-0561 Authentication Bypass Oracle CVE-2002-0562 Information Disclosure Oracle CVE-2002-0563 Information Disclosure Oracle CVE-2002-0564 Authentication Bypass Oracle CVE-2002-0565 Code Access Oracle CVE-2002-0566 DoS Oracle CVE-2002-0567 Arbitrary Command Execution Oracle CVE-2002-0568 Information Disclosure Oracle CVE-2002-0568 Authorization Bypass Oracle CVE-2002-0641 Buffer Overflow Microsoft SQL Server CVE-2002-0649 Multiple Buffer Overflows Microsoft SQL Server CVE-2002-0650 DoS Microsoft SQL Server CVE-2002-0686 Buffer Overflow Sun iPlanet CVE-2002-0693 Buffer Overflow Microsoft Help CVE-2002-0695 Buffer Overflow Microsoft SQL Server CVE-2002-0801 Buffer Overflow Macromedia JRun CVE-2002-0823 Buffer Overflow Microsof Help CVE-2002-0729 DoS Microsoft SQL Server CVE-2002-0721 Multiple Privilege Escalations Microsoft SQL Server CVE-2002-0753 Buffer Overflow Talensoft Web Server CVE-2002-0857 Format String Vulnerability Oracle CVE-2002-0859 Buffer Overflow Microsoft SQL Server CVE-2002-0982 Arbitrary Command Execution Microsoft SQL Server CVE-2002-1138 Arbitrary File Overwrite Microsoft SQL Server CVE-2002-1145 Privilege Escalation Microsoft SQL Server CVE-2002-1264 Buffer Overflow Oracle CVE-2002-1630 Unauthorized Access Oracle CVE-2002-1631 SQL Injection Oracle CVE-2002-1632 Information Leakage Oracle CVE-2002-1635 Apache Misconfiguration Oracle CVE-2002-1636 XSS Oracle CVE-2002-1637 Default passwords Oracle CVE-2002-1641 Multiple Buffer overflows Oracle CVE-2002-1872 Weak password encryption Microsoft SQL Server CVE-2002-1981 Authorization Bypass Microsoft SQL Server CVE-2003-0003 Buffer Overflow Microsoft RPC Locator CVE-2003-0222 Buffer Overflow Oracle CVE-2003-0264 Multiple Buffer Overflows SLMail CVE-2003-0634 Buffer Overflow Oracle CVE-2003-0711 Buffer Overflow Microsoft PC Health CVE-2003-0727 Multiple Buffer Overflows Oracle CVE-2003-1193 Multiple Privilege Escalations Oracle CVE-2004-0194 Buffer Overflow Adobe Reader CVE-2004-0357 Multiple Buffer Overflows SLMail CVE-2004-0356 Buffer Overflow SLMail CVE-2004-0795 Privilege Escalation IBM DB2 CVE-2004-1338 Privilege Escalation Oracle CVE-2004-1363 Buffer Overflow Oracle CVE-2004-1364 Arbitrary Command Execution Oracle CVE-2004-1365 Arbitrary Command Execution Oracle CVE-2004-1372 Multiple Buffer Overflows IBM DB2 CVE-2004-1893 SQLi Macromedia Dreamweaver CVE-2004-2345 Privilege Escalation Oracle CVE-2005-0297 Privilege Escalation Oracle CVE-2005-1178 SQLi Oracle CVE-2005-1131 Buffer Overflow Verita i3 Focalpoint CVE-2005-2773 Arbitrary Command Execution HP Openview CVE-2005-3437 Privilege Escalation Oracle CVE-2005-3438 Buffer Overflow Oracle CVE-2005-3439 Privilege Escalation Oracle CVE-2005-3440 Privilege Escalation Oracle CVE-2005-3441 Privilege Escalation Oracle CVE-2005-3442 Multiple Privilege Escalations Oracle CVE-2005-3443 Privilege Escalation Oracle CVE-2005-4271 Buffer Overflow IBM AIX CVE-2005-4272 Multiple Buffer Overflows IBM AIX CVE-2005-4273 Multiple Buffer Overflows IBM AIX CVE-2005-4864 Buffer Overflow IBM DB2 CVE-2005-4863 Buffer Overflow IBM DB2 CVE-2005-4865 Buffer Overflow IBM DB2 CVE-2005-4866 Buffer Overflow IBM DB2 CVE-2005-4867 Buffer Overflow IBM DB2 CVE-2005-4870 Multiple Buffer Overflows IBM DB2 CVE-2005-4871 Arbitrary File Read/Wrtie IBM DB2 CVE-2005-3642 Authentication Bypass IBM Informix CVE-2006-0271 Multiple Privilege Escalations Oracle CVE-2006-1874 Multiple Privilege Escalations Oracle CVE-2006-3853 Buffer Overflow IBM Informix CVE-2006-3854 Buffer Overflow IBM Informix CVE-2006-3859 Arbitrary File Read/Write IBM Informix CVE-2006-3860 Multiple Buffer Overflows IBM Informix CVE-2006-3855 Arbitary Code Execution IBM Informix CVE-2006-3856 Denial of Service IBM Informix CVE-2006-3857 Multiple Buffer Overflows IBM Informix CVE-2006-3858 Memory Disclosure IBM Informix CVE-2006-3861 Authorisation Bypass IBM Informix CVE-2006-3862 Buffer Overflow IBM Informix CVE-2006-5332 Privilege Escalation Oracle CVE-2006-5333 Privilege Escalation Oracle CVE-2006-5335 Privilege Escalation Oracle CVE-2006-5336 Privilege Escalation Oracle CVE-2006-5340 Privilege Escalation Oracle CVE-2006-5341 Privilege Escalation Oracle CVE-2006-5344 Buffer Overflow Oracle CVE-2007-2108 Authentication Bypass Oracle CVE-2007-2109 Privilege Escalation Oracle CVE-2007-2110 OpenProcess Privilege Escalation Oracle CVE-2007-2112 Policy Bypass Oracle CVE-2007-2114 Buffer Overflow Oracle CVE-2007-2115 Multiple Privilege Escalations Oracle CVE-2007-5506 Denial of Service Oracle CVE-2007-5507 Memory Disclosure & DoS Oracle CVE-2007-5508 Multiple Privilege Escalations Oracle CVE-2007-5511 Privilege Escalation Oracle CVE-2007-5513 Audit Failure Oracle CVE-2007-6260 Authentication Oracle CVE-2008-2589 Privilege Escalation Oracle CVE-2008-3978 Privilege Escalation Oracle CVE-2008-3979 Privilege Escalation Oracle CVE-2010-0866 Privilege Escalation Oracle CVE-2010-0867 Policy Bypass Oracle CVE-2012-0519 Arbitrary command execution Oracle CVE-2012-0552 Buffer Overflow Oracle CVE-2012-3132 Privilege Escalation Oracle CVE-2014-4236 Privilege Escalation Oracle CVE-2014-4237 Policy Bypass Oracle CVE-2014-4245 Policy Bypass Oracle CVE-2014-6567 Buffer Overflow Oracle CVE-2014-6578 Numeric SQL injection Oracle CVE-2014-6556 Multiple PLSQL Injection Oracle CVE-2014-6514 Multiple Authorization Issues Oracle CVE-2014-6541 Polciy Bypass Oracle CVE-2015-0393 Excessive Permissions Oracle CVE-2015-1935 Buffer overflow IBM DB2 CVE-2015-4740 DoS and memory address leak Oracle CVE-2015-0468 PLSQL Injection Oracle CVE-2015-4925 PRIVILEGE ESCALATION VIA RACE CONDITION IN WMSYS.LT.COPYFORUPDATE CVE-2016-0510 SQL INJECTION IN APPS.BIS_BUSINESS_VIEWS_CATALOG CVE-2016-0511 SQL INJECTION IN BIS_LOV_PUB ANDBIS_PORTLET_PMREGION.BIS_LOV_PUB_MAIN CVE-2016-0512 SQL INJECTION IN HR_MISC_WEB CVE-2016-0514 SQL INJECTION IN JTF_BISFAVORITEPLUG_PUB CVE-2016-0515 SQL INJECTION IN JTF_BISUTILITY_PUB CVE-2016-0516 SQL INJECTION IN QA_SS_CORE CVE-2016-0517 SQL INJECTION IN HR_UTIL_DISP_WEB CVE-2016-0518 SQL INJECTION IN HRHTML CVE-2016-0589 SQL INJECTION IN ORACLESSWA CVE-2016-0578 SQL INJECTION VIA JTF_BISUTILITY_PUB.LOV_VALUES CVE-2016-0581 SQL INJECTION AND XSS IN AME_UI CVE-2016-0576 MULTIPLE SQL INJECTION AND XSS INICX_UTIL.LOVVALUES CVE-2016-0520 XSS IN ICX_ASK_ORACLE CVE-2016-0519 XSS IN ARW_TOOLBAR CVE-2016-0521 XSS VULNERABILITIES IN POR_REDIRECT CVE-2016-0584 XSS IN JTF_BISCHARTPLUG_PUB CVE-2016-0582 XSS IN JTF_BISRELATED_PVT.BUILD_REPORT_SECTION_TITLE CVE-2016-0583 XSS IN JTF_BIS_CHART_PLUG CVE-2016-0588 XSS IN GL_WEB_PLSQL_CARTRIDGE CVE-2016-0513 XSS IN ORACLEPLUGS.PLUGRENAME CVE-2016-0507 XSS IN ARW_UTILITIES CVE-2016-0509 XSS IN AP_WEB_UTILITIES_PKG CVE-2016-0575 MULTIPLE XSS IN OT_UTIL_SKILLS_WEB CVE-2016-0579 MULTIPLE XSS IN JTF_BISJAVASCRIPT_PUB CVE-2016-0586 MULTIPLE XSS IN ICX_ADMIN_SIG CVE-2016-0544 SQL INJECTION IN AMSSEGMENTLOV.JSP CVE-2016-0543 SQL INJECTION IN AMSQUERYPREVIEW.JSP CVE-2016-0548 SQL INJECTION IN BISAKRGN.JSP CVE-2016-0549 SQL INJECTION IN BISAKRIU.JSP CVE-2016-0547 SQL INJECTION IN BISAKRGI.JSP CVE-2016-0552 SQL INJECTION IN BICRLUPD.JSP (11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5) CVE-2016-0545 SQL INJECTION IN BICCFGD2.JSP (11.5.10.2, 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5) CVE-2016-0550 SQL INJECTION IN JTFWTOST.JSP (11.5.10.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5) CVE-2016-0580 DOS IN ADI_BINARY_FILE CVE-2016-0585 DOS IN ICX_ADMIN_SIG CVE-2016-0467 AUDIT PROCEDURE FAILS TO CAPTURE CREATE JAVA SOURCE CVE-2015-4921 IF SYS AUDITING IS ENABLED THE STATUS IS INCORRECTLY RETURNED CVE-2016-0690 AUDIT NOT EXISTS FAILS TO AUDIT ATTEMPTS TO EXEC A PROCEDURE THAT DOES NOT EXIST CVE-2016-0697 LIMITED SQL INJECTION IN FND_WEB_SEC CVE-2016-3466 SQL INJECTION IN CSFWCPNT.JSP CVE-2016-0691 INCORRECT AUDIT OF A FAILURE OF EXECUTE OF A NON-EXISTENT PROCEDURE CVE-2016-3527 OLAP DML Injection CVE-2016-3546 SQL injection in iexdlrcd.jsp, iexdlrcs.jsp iexrprcd.jsp, iexrprcs.jsp and iexrpval.jsp CVE-2016-3543 SQL injection in jtfcsvrendertask.jsp CVE-2016-3541 SQL injection in jtfnotesalltest.jsp CVE-2016-3542 SQL injection in cskllseo.jsp CVE-2016-3559 Arbitrary JSP forwards CVE-2016-3524 trusted.conf location directives ineffective CVE-2016-3525 Cookie exposure in OAMDBConnAndAM CVE-2016-3522 XSS in BneApplicationService CVE-2016-3523 OpenRedirect in BneApplicationService CVE-2016-3520 Session spoofing in AOLJ test pages CVE-2016-3528 DoS in BarcodeImageServlet CVE-2016-3549 XXE in AppSearchMeta Servlet in OAFM CVE-2016-3448 XSS in in Apex HTMLDB_UTIL CVE-2016-3467 SSRF in Apex 5 CVE-2016-3572 SQL injection in Oracle Primavera CVE-2016-3573 XSS Filter bypass in Primavera CVE-2016-3566 SSRF in Primavera CVE-2016-3569 XSS in Rm_usage_view.jsp CVE-2016-3571 XSS in Phoenix_proj_print.jsp CVE-2016-3570 XSS Pm_gantt_customize.jsp CVE-2016-3568 XSS in Nrm_initconfig.inc CVE-2016-3567 XSS in Applet_node_remove.jsp CVE-2016-3433 XSS in OBIEE CVE-2016-3554 INDEX privs on SYS tables in Agile CVE-2016-3553 SQL injection in AGILE.MIGRATE_DASHBOARD_DATA CVE-2016-5567 SQL injection in AD Utilities CVE-2016-5570 SQL injection in AD Utilities CVE-2016-5571 SQL injection in AD Utilities CVE-2016-5517 SQL injection in AD Utilities CVE-2016-5516 Privilege escalation in DBMS_PDB_EXEC_SQL CVE-2016-5521 SQL injection in AUDITREPORTS_PKG CVE-2016-5512 SQL injection in AUDITSCHEMA_PKG CERT Advisories http://www.cert.org/historical/advisories/CA-2003-27.cfm http://www.cert.org/historical/advisories/CA-2003-11.cfm http://www.cert.org/historical/advisories/CA-2003-05.cfm http://www.cert.org/historical/advisories/CA-2003-03.cfm http://www.cert.org/historical/advisories/CA-2002-22.cfm http://www.cert.org/historical/advisories/CA-2002-14.cfm http://www.cert.org/historical/advisories/CA-2002-08.cfm