dcsimg

Oracle Database Default Library Directory Privilege Escalation Vulnerability

August 2, 2004

[From SecurityFocus]

Oracle database implementations are reportedly prone to a default library directory privilege escalation vulnerability. This issue arises due to a default configuration error that will permit the attacker to replace libraries required by setuid root applications with arbitrary code.

The article continues at http://www.securityfocus.com/bid/10829/discussion/