Oracle TNS Listener VSNNUM Version Remote Information Disclosure
Medium Nessus Plugin ID 110053
SynopsisA database service listening on the remote host discloses version information remotely.
DescriptionIt was possible to extract the version number of the remote Oracle TNS (Transparent Network Substrate) listener remotely by sending an unauthenticated request to the TNS listener service operating on this port. This information could aid an attacker.
Note that the version of the TNS listener does not necessarily reflect the version of the Oracle database it provides access to.
SolutionRestrict access to the database to allowed IPs only.