DB: Oracle Database TNS Listener Service Registration Lack of Authentication
This signature detects attempts to exploit a known flaw in the TNS Listener component of Oracle's database. A successful attack can lead to redirect legitimate database queries to a rogue server or to perform a man-in-the-middle attack to hijack established connections. As a result, the attacker could gain full access to the database with the privileges of the user whose connection was hijacked.
Extended Description
Oracle Database Server is prone to a remote vulnerability that allows attackers to poison the data handled by the remote 'TNS Listener' component of the application. An attacker can exploit this issue to divert data from a legitimate remote 'TNS Listener' component of database server to an attacker-specified system. Successful exploits will allow the attacker to manipulate database instances of the remote component, potentially facilitating man-in-the-middle, session-hijacking, or denial-of-service attacks between the component and a legitimate database server.
Affected Products
Oracle oracle10g_standard_edition
Short Name
DB:ORACLE:TNS:SERVICE-AUTH
Severity
Major
Recommended
False
Recommended Action
Drop
Category
DB
Keywords
Authentication CVE-2012-1675 Database Lack Listener Oracle Registration Service TNS bid:53308 of
Release Date
07/09/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Oracle
Suse
CVSS Score
7.5