Description

Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.

Remediation

References

CVE-2002-0567

Related Vulnerabilities

MySQL CVE-2014-6568 Vulnerability (CVE-2014-6568)

Squid Improper Input Validation Vulnerability (CVE-2020-8517)

Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-45357)

WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Cross-Site Scripting (3.4.2)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-4360)

Severity

High

Classification

CVE-2002-0567

Tags

Missing Update Known Vulnerabilities