Unspecified vulnerability in the XML DB component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, and 10.2.0.3 allows remote authenticated users to affect confidentiality and integrity via unknown vectors.
http://www.us-cert.gov/cas/techalerts/TA10-103B.html
http://www.oracle.com/technetwork/topics/security/cpuapr2010-099504.html