Re: Oracle TNS Listener

From: James W. Abendschan (jwaat_private)
Date: Wed Dec 19 2001 - 12:08:23 PST

Next message: Alfred Huger: "List is closing down for the Holidays"

Previous message: Aaron C. Newman: "RE: Oracle TNS Listener"
In reply to: Joe Brown: "Oracle TNS Listener"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 17 Dec 2001, Joe Brown wrote:

> Hello all,
> 
> I'm currently performing a pen-test and have found a 
> remote machine with TCP port 1521 open.  I have 
> read information about an Oracle TNS listener 
> vulnerability but, can't find any more information.  Can 
> anyone point me in the right direction?

A simple tool I wrote to talk to tnslsnr & documentation 
which describes some security problems is available at

    http://www.jammed.com/~jwa/hacks/security/tnscmd

There are also some Oracle security/pentesting papers at

    http://www.pentest-limited.com/

James



----------------------------------------------------------------------------
This list is provided by the SecurityFocus Security Intelligence Alert (SIA)
Service. For more information on SecurityFocus' SIA service which
automatically alerts you to the latest security vulnerabilities please see:
https://alerts.securityfocus.com/

Next message: Alfred Huger: "List is closing down for the Holidays"
Previous message: Aaron C. Newman: "RE: Oracle TNS Listener"
In reply to: Joe Brown: "Oracle TNS Listener"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Wed Dec 19 2001 - 15:16:10 PST