Operating System - HP-UX
1748011 Members
4993 Online
108757 Solutions
New Discussion юеВ

Re: SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

 
Steven Sim Kok Leong
Honored Contributor

SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi,

/quote/

5 Mar 2002

A potential security vulnerability has been discovered in the Oracle Enterprise Manager (EM)
SNMP monitoring capability for Oracle Database that may result in a potential Denial of Service
(DoS) attack against EM???s ???master_peer??? agent.

/unquote/

Details can be found at:

http://otn.oracle.com/deploy/security/pdf/snmp_2002_alert.pdf

This is related to the CERT Advisory CA-2002-03 on SNMP vulnerabilities issued some weeks back.

Hope this helps. Regards.

Steven Sim Kok Leong
2 REPLIES 2
Peter Kloetgen
Esteemed Contributor

Re: SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi Steven,

i just heard "SNMP" stands for:

Security is Not My Problem

Oh these acronymes! Is it possible to learn the real meanings of only a few percent of them?

Allways stay on the bright side of life!

Peter
I'm learning here as well as helping
Andreas D. Skjervold
Honored Contributor

Re: SNMP Vulnerability in Oracle Enterprise Manager, Master_Peer Agent

Hi

The HP-UX patch for this problem is not yet provided, only Solaris.

Oracle Support has no indications as to when this will be available, but they're working on it.

If you find the patch on Metalink later on, post a notice on the forum to let us know of the availability.

Andreas
Only by ignoring what everyone think is important, can you be aware of what everyone ignores!