Vulnerabilities > CVE-1999-0888 - Unspecified vulnerability in Oracle Database Server and Oracle8I

047910
CVSS 4.6 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
local
low complexity
oracle
exploit available
NVD
Published: 1999-08-16
Updated: 2008-09-09

Summary

dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.

Vulnerable Configurations

Part Description Count
Application
Oracle
7

Exploit-Db

  • descriptionOracle 8 8.1.5 Intelligent Agent Vulnerability (1). CVE-1999-0888. Local exploits for multiple platform
    idEDB-ID:19460
    last seen2016-02-02
    modified1999-08-16
    published1999-08-16
    reporterBrock Tellier
    sourcehttps://www.exploit-db.com/download/19460/
    titleOracle <= 8 8.1.5 Intelligent Agent Vulnerability 1
  • descriptionOracle 8 8.1.5 Intelligent Agent Vulnerability (2). CVE-1999-0888. Local exploits for multiple platform
    idEDB-ID:19461
    last seen2016-02-02
    modified1999-08-16
    published1999-08-16
    reporterGilles PARC
    sourcehttps://www.exploit-db.com/download/19461/
    titleOracle <= 8 8.1.5 Intelligent Agent Vulnerability 2

References