Vulnerabilities > CVE-2001-0943 - Unspecified vulnerability in Oracle Database Server 8.0.5/8.1.5
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to find and execute the (1) chown or (2) chgrp commands, which allows local users to execute arbitrary code by modifying the PATH to point to Trojan Horse programs.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |