Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2012-1675 PoC — Oracle Database Server 'TNS Listener' 远程漏洞

Source
https://github.com/bongbongco/CVE-2012-1675
Associated Vulnerability
Title:Oracle Database Server 'TNS Listener' 远程漏洞 (CVE-2012-1675)
Description:Oracle Database Server是一个对象关系数据库管理系统。 Oracle Database Server在实现上存在可允许攻击者向远程“TNS Listener”组件处理的数据投毒的漏洞。攻击者可利用此漏洞将数据库服务器的合法“TNS Listener”组件中的数据转向到攻击者控制的系统,导致控制远程组件的数据库实例,造成组件和合法数据库之间的攻击者攻击、会话劫持或拒绝服务攻击。
Description
Oracle Database TNS Listener Poison Attack Vulnerability
Readme
# CVE-2012-1675
Oracle Database TNS Listener Poison Attack Vulnerability  

nmap -Pn -sT --script=+oracle-tns-poison -p 1521 192.168.2.18

https://www.integrigy.com/files/Integrigy%20Oracle%20TNS%20Poisoning%20Attacks.pdf
File Snapshot

 [4.0K]  /data/pocs/80e4c65c7848a0f0381fc68f44ce2d6d4aa5899a
├── [2.5K]  oracle-tns-poison.nse
└── [ 222]  README.md

0 directories, 2 files
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.