Oracle.Database.TNS.Listener.Service.Authentication.Bypass
Description
This indicates an attack attempt to exploit an Authentication Bypass vulnerability in the TNS Listener of Oracle Database.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can exploit this to gain unauthorized access to the database.
Affected Products
Oracle Database 10g Release 2 10.2.0.3
Oracle Database 10g Release 2 10.2.0.4
Oracle Database 10g Release 2 10.2.0.5
Oracle Database 11g Release 1 11.1.0.7
Oracle Database 11g Release 2 11.2.0.2
Oracle Database 11g Release 2 11.2.0.3
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Refer to the vendor's website for suggested workaround.
http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-05-07 | 14.608 | Sig Added |