← volver
CVE-2001-1041

CVE-2001-1041

EPSS 0.6%
oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://marc.info/?l=bugtraq&m=100395579811880&w=2http://marc.info/?l=bugtraq&m=99677282117387&w=2http://otn.oracle.com/deploy/security/pdf/oracle_race.pdfhttp://www.securityfocus.com/bid/3135