iSQL*Plus (isqlplus) for Oracle9i Database Server Release 2 9.0.2.4 allows remote attackers to cause a denial of service (TNS listener stop) via an HTTP request with an sid parameter that contains a STOP command.
https://exchange.xforce.ibmcloud.com/vulnerabilities/22544
http://www.oracle.com/technology/deploy/security/pdf/cpujul2005.html
http://securityreason.com/securityalert/64