> The oracle_tnslsnr_security.nasl is not checking the security of the
> listener correctly for Oracle 9i and 10g.
>
> 9i introduced a new error code (TNS-01169) if it doesn't recognize the
> password and 10g listeners will not work with this code. They have
> reworked the listener and a 9i lsnrctl will no longer administer a 10g
> listener. A TNS-12618 is raised for incompatible versions of lsnrctl.
>
> The following code will check for these issues:
>
> diff new_oracle_tnslsnr_security.nasl oracle_tnslsnr_security.nasl
> 87c87
> < if ("SECURITY=ON" >< reply ||
> "ERROR=(CODE=1169)" >< reply)
> ---
> > if ("SECURITY=ON" >< reply)
> 96,105d95
> < else if ("ERROR=(CODE=12618)" >< reply)
> < {
> <
> < # FYI
> < report = string
> < (
> < "This host has an incompatible version
> of tnslsnr for the plugin. This cannot be checked.\n"
> < );
> < security_note(port:port, data:report);
> < }
>
The information contained in this e-mail is confidential and/or proprietary
to Capital One and/or its affiliates. The information transmitted herewith
is intended only for use by the individual or entity to which it is
addressed. If the reader of this message is not the intended recipient,
you are hereby notified that any review, retransmission, dissemination,
distribution, copying or other use of, or taking of any action in reliance
upon this information is strictly prohibited. If you have received this
communication in error, please contact the sender and delete the material
from your computer.
_______________________________________________
Plugins-writers mailing list
Plugins-writers@private
http://mail.nessus.org/mailman/listinfo/plugins-writers
This archive was generated by hypermail 2.1.3 : Tue Jun 20 2006 - 05:26:27 PDT