Sponsored Links

 

 

Home > Programming > Oracle Programming

 

Oracle SQL*Net and Net8 Malformed Packet Denial of Service ...

Source: www.oracle.com
Topic: Oracle Programming

Short Desciption:
Oracle SQL*Net and Net8 Malformed Packet Denial of Service Vulnerability Overview A potential security vulnerability has been discovered in Net8 (formerly known as SQL*Net). The Oracle8i database ...

 

Content Inside:
Oracle SQL*Net and Net8 Malformed Packet Denial of Service Vulnerability Overview A potential security vulnerability has been discovered in Net8 (formerly known as SQL*Net). The Oracle8i database server relies on multiple services for its distributed client server computing functionality. Services that are dependant upon the TNS include the TNS Listener, Oracle Name Service and the Oracle Connections Manager. These servers accept  client requests and establish TNS data connections between the clients and the services. A vulnerability exists in the TNS libraries which process Net8 packets. This vulnerability will enable an attacker to mount a denial of service attack against any of the above services by issuing a malformed Net8 connection request. Products All releases of the Oracle Listener (database releases Oracle 7.3.x, Oracle 8.0.x, Oracle 8.1.x) Platforms All platforms Patch Solution Oracle has fixed this potential security vulnerability in the Oracle9i database server. Oracle is in the process of backporting the fix to supported Oracle8i database server Releases 8.1.7 (patchsets 81.7.2 and 8.1.7.3) and 8.1.6 and Oracle8 Release 8.0.6  on all platforms. Download the patch for your platform from Oracles Worldwide Support web site, Metalink, http://metalink. oracle.com. Please check Metalink periodically for patch availability if the patch for your platform is not yet available. Please see the matrix posted below this Alert for details on patch availability and schedules. Credits Oracle would like to thank COVERT Labs at PGP Security (Network Associates) for discovering this potential security vulnerability and promptly bringing it to Oracles attention.

 

add to Google Reader add to Google Bookmark add to bloglines add to newsgator add to FURL add to digg add to webnews add to Netscape add to Yahoo MyWeb add to spurl.net add to diigo Bookmark newsvine Bookmark del.icio.us Bookmark @ SIMPIFY Bookmark MISTER WONG Bookmark Linkarena Bookmark icio.de Bookmark oneview Bookmark folkd.com Bookmark yigg.de Bookmark reddit Bookmark StumbleUpon Bookmark Slashdot Bookmark blinklist Bookmark technorati add to blogmarks add to blinkbits add to ma.gnolia add to smarking.com add to netvouz add to co.mments add to Connotea add to de.lirio.us

 

Related PDF Files

Oracle Cryptographic Toolkit Programmers Guide


Topic: Oracle Programming

Each OCI function description contains the following informa- tion: Refer to Chapter 2, OCI Programming Basics, in the Programmers Guide to the Oracle Call Interface TM for an overview of the steps ...

Managing Oracle Real Application Clusters


Topic: Oracle Programming

Managing Oracle Real Application Clusters Page 2 Managing Oracle Real Application Clusters Overview ... Configuration Assistant (DBCA) is automatically launched at the end of the install to create ...

Oracle SQL Developer Tips and Techniques


Topic: Oracle Programming

Oracle SQL Developer Tips and Techniques 1-Day Workshop Dan will illustrate the latest features of the new free SQL Developer tool from Oracle Corp necessary to view, extract, and manipulate data ...

Oracle Data Mining Programmer’s Guide


Topic: Oracle Programming

ODM Requirements and Constraints 1-2 Oracle Data Mining Application Developers Guide ■ Chapter6 describes programming with BLAST, a set of table functions for performing sequence matching searches ...

PL/SQL Conditional Compilation use cases and best practice


Topic: Oracle Programming

PL/SQL conditional compilation 10-November-2005 www.oracle.com/technology/tech/pl_sql/pdf/ Plsql_Conditional_Compilation.pdf NOTE The following is intended to outline our general product direction.

 

Sponsored Links