Denial of Service Vulnerability in Oracle TNS Listener for 10g
CVE-2004-1369

Currently unrated

Key Information:

Vendor
Oracle
Vendor
CVE Published:
4 August 2004

Summary

The TNS Listener in Oracle 10g is susceptible to a denial of service attack. Remote attackers can exploit this vulnerability by sending a specially crafted service_register_NSGR request. This malformed request can contain an invalid offset for a pointer, causing the listener to reference incorrect memory and ultimately crash. As a result, the availability of the service is compromised, affecting users relying on Oracle's database functionalities.

References

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.