Vulnerabilities > CVE-2003-0265 - Unspecified vulnerability in SAP DB 7.3.29/7.4.3.7Beta
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN sap
exploit available
Summary
Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | SAP Database 7.3/7.4 SDBINST Race Condition Vulnerability. CVE-2003-0265. Local exploit for linux platform |
| id | EDB-ID:22531 |
| last seen | 2016-02-02 |
| modified | 2003-04-23 |
| published | 2003-04-23 |
| reporter | Larry W. Cashdollar |
| source | https://www.exploit-db.com/download/22531/ |
| title | SAP Database 7.3/7.4 SDBINST Race Condition Vulnerability |