4.2.5 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'INITJVMAUX'

Information

As use of the INITJVMAUX package could allow an unauthorized user to run SQL commands as user SYS.

Solution

To remediate this setting execute the following SQL statement. REVOKE EXECUTE ON INITJVMAUX FROM PUBLIC;

See Also

https://workbench.cisecurity.org/files/601

Item Details

Audit Name: CIS Oracle Server 11g R2 DB v2.2.0

Plugin: OracleDB

Control ID: ebdae32faf0b2a7aa860d73ccdcfb9138f86a644e19467b6d56e3bc0bba922e5