|
Family: Databases --> Category: infos
Oracle tnslsnr version query Vulnerability Scan
Vulnerability Scan Summary connects and issues a TNS VERSION command
Detailed Explanation for this Vulnerability Test
Synopsis :
The Oracle tnslsnr service is listening on the remote port.
Description :
The remote host is running the Oracle tnslsnr, a network
interface to the remote Oracle database. This product allows
a remote user to acertain the existence and version number
of a given Oracle installation.
In addition, older versions of this service may let a possible hacker
write to arbitrary files on the remote host.
Solution :
Filter incoming traffic to this port so that only authorized
hosts can connect to it.
See also :
http://otn.oracle.com/deploy/security/pdf/listener_alert.pdf
Threat Level:
None
Click HERE for more information and discussions on this network vulnerability scan.
|