Vulnerabilities > CVE-2001-0300 - Local Security vulnerability in Oracle Internet Directory 2.1.1.1
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |