By default when you install Oracle the TNS Listener is on tcp port 1521. It handles network requests to be passed to a database instance. If it not appropriately secured commands can be sent to the listener, the listener can be shut down, or the databases can be queried. There have been a number of vulnerabilities over the years that have been actively exploited specific to the TNS Listener.
Some recommended reading: the Oracle Database Listener Security Guide http://www.scribd.com/doc/22455/Oracle-Database-Listener-Security-Guide Please contact us if you have any comments or would like to add to this diary entry. Cheers, |
Adrien de Beaupre 353 Posts ISC Handler Jan 25th 2011 |
Thread locked Subscribe |
Jan 25th 2011 1 decade ago |
Sign Up for Free or Log In to start participating in the conversation!