Databases
cancel
Showing results for 
Search instead for 
Did you mean: 

SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Steven Sim Kok Leong
Honored Contributor

SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi,

/quote/

5 Mar 2002

A potential security vulnerability has been discovered in the Oracle Enterprise Manager (EM)
SNMP monitoring capability for Oracle Database that may result in a potential Denial of Service
(DoS) attack against EM???s ???master_peer??? agent.

/unquote/

Details can be found at:

http://otn.oracle.com/deploy/security/pdf/snmp_2002_alert.pdf

This is related to the CERT Advisory CA-2002-03 on SNMP vulnerabilities issued some weeks back.

Hope this helps. Regards.

Steven Sim Kok Leong
Email: steven@beepz.com. Homepage: https://www.beepz.com
2 REPLIES
Peter Kloetgen
Esteemed Contributor

Re: SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi Steven,

i just heard "SNMP" stands for:

Security is Not My Problem

Oh these acronymes! Is it possible to learn the real meanings of only a few percent of them?

Allways stay on the bright side of life!

Peter
I'm learning here as well as helping
Andreas D. Skjervold
Honored Contributor

Re: SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi

The HP-UX patch for this problem is not yet provided, only Solaris.

Oracle Support has no indications as to when this will be available, but they're working on it.

If you find the patch on Metalink later on, post a notice on the forum to let us know of the availability.

Andreas
Only by ignoring what everyone think is important, can you be aware of what everyone ignores!