• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Oracle 8i TNS Listener Buffer Overflow Vulnerability

Solution:
Oracle has stated that this vulnerability is not present in the Oracle 9i database server. As of 11/2002, It is not clear if patches are yet available for Oracle 8 systems. Administrators are advised to completely block external access to the listener until Oracle support can be contacted or systems can be upgraded. See: http://otn.oracle.com/deploy/security/pdf/nai_net8_bof.pdf

Please visit the Metalink website for patches and more information.

http://metalink.oracle.com