| VID |
25157 |
| Severity |
30 |
| Port |
1521, ... |
| Protocol |
TCP |
| Class |
DB |
| Detailed Description |
PASSWORD_REUSE_TIME value of the ORACLE server on the host system is unsafe. PASSWORD_REUSE_TIME means number of days that must pass before the same password can be used again. If PASSWORD_REUSE_TIME value is not set or is set to less than 365, the possibility of password leak can increase.
* Platforms Affected:
UNIX any version
Linux any version
Microsoft Windows any version |
| Recommendation |
Reset PASSWORD_REUSE_TIME value as following.
SQL> ALTER PROFILE DEFAULT LIMIT
SQL> PASSWORD_REUSE_TIME 365; (or more)
SQL> ALTER PROFILE [profile_name] LIMIT
SQL> PASSWORD_REUSE_TIME default; |
| Related URL |
(CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
