Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2012-1675
PUBLISHED
More InfoOfficial Page
Assigner-oracle
Assigner Org ID-43595867-4340-4103-b7a2-9a5208d29a85
View Known Exploited Vulnerability (KEV) details
Published At-08 May, 2012 | 22:00
Updated At-06 Aug, 2024 | 19:08
Rejected At-
▼CVE Numbering Authority (CNA)

The TNS Listener, as used in Oracle Database 11g 11.1.0.7, 11.2.0.2, and 11.2.0.3, and 10g 10.2.0.3, 10.2.0.4, and 10.2.0.5, as used in Oracle Fusion Middleware, Enterprise Manager, E-Business Suite, and possibly other products, allows remote attackers to execute arbitrary database commands by performing a remote registration of a database (1) instance or (2) service name that already exists, then conducting a man-in-the-middle (MITM) attack to hijack database connections, aka "TNS Poison."

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00018.html
vendor-advisory
x_refsource_SUSE
http://www.securityfocus.com/bid/53308
vdb-entry
x_refsource_BID
http://www.securitytracker.com/id?1027000
vdb-entry
x_refsource_SECTRACK
http://seclists.org/fulldisclosure/2012/Apr/343
mailing-list
x_refsource_FULLDISC
https://blogs.oracle.com/security/entry/security_alert_for_cve_2012
x_refsource_CONFIRM
http://www.kb.cert.org/vuls/id/359816
third-party-advisory
x_refsource_CERT-VN
http://seclists.org/fulldisclosure/2012/Apr/204
mailing-list
x_refsource_FULLDISC
http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html
x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
vendor-advisory
x_refsource_MANDRIVA
https://exchange.xforce.ibmcloud.com/vulnerabilities/75303
vdb-entry
x_refsource_XF
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00018.html
Resource:
vendor-advisory
x_refsource_SUSE
Hyperlink: http://www.securityfocus.com/bid/53308
Resource:
vdb-entry
x_refsource_BID
Hyperlink: http://www.securitytracker.com/id?1027000
Resource:
vdb-entry
x_refsource_SECTRACK
Hyperlink: http://seclists.org/fulldisclosure/2012/Apr/343
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: https://blogs.oracle.com/security/entry/security_alert_for_cve_2012
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.kb.cert.org/vuls/id/359816
Resource:
third-party-advisory
x_refsource_CERT-VN
Hyperlink: http://seclists.org/fulldisclosure/2012/Apr/204
Resource:
mailing-list
x_refsource_FULLDISC
Hyperlink: http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html
Resource:
x_refsource_CONFIRM
Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Resource:
vendor-advisory
x_refsource_MANDRIVA
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/75303
Resource:
vdb-entry
x_refsource_XF
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00018.html
vendor-advisory
x_refsource_SUSE
x_transferred
http://www.securityfocus.com/bid/53308
vdb-entry
x_refsource_BID
x_transferred
http://www.securitytracker.com/id?1027000
vdb-entry
x_refsource_SECTRACK
x_transferred
http://seclists.org/fulldisclosure/2012/Apr/343
mailing-list
x_refsource_FULLDISC
x_transferred
https://blogs.oracle.com/security/entry/security_alert_for_cve_2012
x_refsource_CONFIRM
x_transferred
http://www.kb.cert.org/vuls/id/359816
third-party-advisory
x_refsource_CERT-VN
x_transferred
http://seclists.org/fulldisclosure/2012/Apr/204
mailing-list
x_refsource_FULLDISC
x_transferred
http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html
x_refsource_CONFIRM
x_transferred
http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
vendor-advisory
x_refsource_MANDRIVA
x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/75303
vdb-entry
x_refsource_XF
x_transferred
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2012-06/msg00018.html
Resource:
vendor-advisory
x_refsource_SUSE
x_transferred
Hyperlink: http://www.securityfocus.com/bid/53308
Resource:
vdb-entry
x_refsource_BID
x_transferred
Hyperlink: http://www.securitytracker.com/id?1027000
Resource:
vdb-entry
x_refsource_SECTRACK
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2012/Apr/343
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: https://blogs.oracle.com/security/entry/security_alert_for_cve_2012
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.kb.cert.org/vuls/id/359816
Resource:
third-party-advisory
x_refsource_CERT-VN
x_transferred
Hyperlink: http://seclists.org/fulldisclosure/2012/Apr/204
Resource:
mailing-list
x_refsource_FULLDISC
x_transferred
Hyperlink: http://www.oracle.com/technetwork/topics/security/alert-cve-2012-1675-1608180.html
Resource:
x_refsource_CONFIRM
x_transferred
Hyperlink: http://www.mandriva.com/security/advisories?name=MDVSA-2013:150
Resource:
vendor-advisory
x_refsource_MANDRIVA
x_transferred
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/75303
Resource:
vdb-entry
x_refsource_XF
x_transferred
Details not found