Vulnerabilities > CVE-2001-0833 - Unspecified vulnerability in Oracle Database Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN oracle
exploit available
Summary
Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."
Vulnerable Configurations
Exploit-Db
| description | Oracle OTRCREP Oracle 8/9 Home Environment Variable Buffer Overflow Vulnerability. CVE-2001-0833. Local exploit for unix platform |
| id | EDB-ID:21045 |
| last seen | 2016-02-02 |
| modified | 2001-08-02 |
| published | 2001-08-02 |
| reporter | Juan Manuel Pascual Escribá |
| source | https://www.exploit-db.com/download/21045/ |
| title | Oracle OTRCREP Oracle 8/9 Home Environment Variable Buffer Overflow Vulnerability |
References
- http://otn.oracle.com/deploy/security/pdf/otrcrep.pdf
- http://online.securityfocus.com/archive/1/201295
- http://online.securityfocus.com/archive/1/222612
- http://www.ciac.org/ciac/bulletins/m-011.shtml
- http://www.securityfocus.com/bid/3139
- http://marc.info/?l=bugtraq&m=100386756715645&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6940