← CVECheck
HomeVulnerabilities

CVE-2004-1365 — MEDIUM severity vulnerability (Extproc in Oracle 9i and 10g does not require authentication)

Extproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.

CVE IDCVE-2004-1365
SeverityMEDIUM
CVSS score4.6
CVSS vectorAV:L/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-08-04
Last modified2026-04-16
DescriptionExtproc in Oracle 9i and 10g does not require authentication to load a library or execute a function, which allows local users to execute arbitrary commands as the Oracle user.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →