Short Name |
DB:ORACLE:TNS:SERVICE-AUTH |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
DB |
Keywords |
Oracle Database TNS Listener Service Registration Lack of Authentication |
Release Date |
2013/07/09 |
Update Number |
2280 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known flaw in the TNS Listener component of Oracle's database. A successful attack can lead to redirect legitimate database queries to a rogue server or to perform a man-in-the-middle attack to hijack established connections. As a result, the attacker could gain full access to the database with the privileges of the user whose connection was hijacked.
Oracle Database Server is prone to a remote vulnerability that allows attackers to poison the data handled by the remote 'TNS Listener' component of the application. An attacker can exploit this issue to divert data from a legitimate remote 'TNS Listener' component of database server to an attacker-specified system. Successful exploits will allow the attacker to manipulate database instances of the remote component, potentially facilitating man-in-the-middle, session-hijacking, or denial-of-service attacks between the component and a legitimate database server.