Vulnerabilities > CVE-2003-0265 - Unspecified vulnerability in SAP DB 7.3.29/7.4.3.7Beta
Attack vector
LOCAL Attack complexity
HIGH Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 2 |
Exploit-Db
description | SAP Database 7.3/7.4 SDBINST Race Condition Vulnerability. CVE-2003-0265. Local exploit for linux platform |
id | EDB-ID:22531 |
last seen | 2016-02-02 |
modified | 2003-04-23 |
published | 2003-04-23 |
reporter | Larry W. Cashdollar |
source | https://www.exploit-db.com/download/22531/ |
title | SAP Database 7.3/7.4 SDBINST Race Condition Vulnerability |