Skip to main content

Early Access — Mondoo Vulnerability Intelligence is currently in preview.

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

CVE-2002-0567 | Mondoo Vulnerability Intelligence

CVE-2002-0567

UNKNOWN

Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process

Published Apr 2, 2003

Modified 1 years ago

No fix available

Details

Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.

References

WEBhttp://marc.info/?l=bugtraq&m=101301332402079&w=2 WEBhttp://otn.oracle.com/deploy/security/pdf/plsextproc_alert.pdf ADVISORYhttp://www.cert.org/advisories/CA-2002-08.html ADVISORYhttp://www.kb.cert.org/vuls/id/180147 WEBhttp://www.securityfocus.com/bid/4033 WEBhttps://exchange.xforce.ibmcloud.com/vulnerabilities/8089 ADVISORYhttps://www.cve.org/CVERecord?id=CVE-2002-0567

CVSS Analysis

CVSS v2.0

7.5

Exploitability

Access Vector

NetworkAV:N

Access Complexity

LowAC:L

Authentication

NoneAu:N

Impact

Confidentiality

PartialC:P

Integrity

PartialI:P

Availability

PartialA:P

7.5/AV:N/AC:L/Au:N/C:P/I:P/A:P

Ecosystems

Timeline

PublishedApr 2, 2003

ModifiedAug 8, 2024