CVE-2002-0567

Name of the Vulnerable Software and Affected Versions Oracle versions 8i and 9i

Description The issue allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process, which is part of the PL/SQL package for External Procedures.

Recommendations For Oracle versions 8i and 9i, consider restricting access to the EXTPROC process to minimize the risk of exploitation. As a temporary workaround, consider disabling the EXTPROC process until a more permanent solution is available.