Description

Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.

Remediation

References

CVE-2002-0567

Related Vulnerabilities

Python Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2014-2667)

WordPress Plugin Divi Builder Arbitrary File Upload (4.5.2)

WordPress Plugin WordPress Access Areas Security Bypass (1.3.0)

Drupal Core 9.0.x Directory Traversal (9.0.0 - 9.0.14)

WordPress Plugin Ultimate SMS Notifications for WooCommerce CSV Injection (1.4.1)

Severity

High

Classification

CVE-2002-0567

Tags

Missing Update Known Vulnerabilities