Summary
The remote Oracle tnslsnr has no password assigned.
An attacker may use this fact to shut it down arbitrarily, thus preventing legitimate users from using it properly.
Solution
use the lsnrctrl SET PASSWORD command to assign a password to, the tnslsnr.
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apple Safari 'setInterval()' Address Bar Spoofing Vulnerability (Win)
- Apple Safari 'Webkit' Multiple Vulnerabilities-01 Mar14 (Mac OS X)
- Apple Safari Webkit Multiple Vulnerabilities - March 2011
- Apache Tomcat XML External Entity Information Disclosure Vulnerability
- Adobe Flash Player Multiple Security Bypass Vulnerabilities - 01 Feb14 (Linux)