Details
extproc should be removed from the listener.ora to mitigate the risk that OS libraries can be invoked by the Oracle instance.
Rationale:
extproc allows the database to run procedures from OS libraries. These library calls can, in turn, run any OS command.
Solution
To remediate this recommendation:
Remove extproc from the listener.ora file.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: System and Information Integrity.This control applies to the following type of system Unix.