Intrusion Prevention

Oracle.TNS.Listener.DoS

Description

TNS listener can be shutdown by any user if the server is not protected with a password. This signature indicates a possible attempt at sending a STOP command to the TNS listener. This can be done with the lsnrctl command, the tnscmd perl script or via tnsnames.ora.

Affected Products

Oracle Oracle9i 9.0.2.4

Impact

Denial of Service

Recommended Actions

Oracle has released a Critical Patch Update. Please visit Oracle Critical Patch Update site and apply the appropriate patches.

CVE References

CVE-2005-3207 CVE-2005-3206