Oracle: >> Oracle9i >> 9.0 Security Vulnerabilities
Oracle 8i and 9i with PL/SQL package for External Procedures (EXTPROC) allows remote attackers to bypass authentication and execute arbitrary functions by using the TNS Listener to directly connect to the EXTPROC process.
CVSS Score
7.5
EPSS Score
0.018
Published
2002-07-03
Oracle 9i Application Server stores XSQL and SOAP configuration files insecurely, which allows local users to obtain sensitive information including usernames and passwords by requesting (1) XSQLConfig.xml or (2) soapConfig.xml through a virtual directory.
CVSS Score
2.1
EPSS Score
0.048
Published
2002-07-03
Oracle Oracle9i database server 9.0.1.x allows local users to access restricted data via a SQL query using ANSI outer join syntax.
CVSS Score
7.5
EPSS Score
0.008
Published
2002-07-03
Page 3