漏洞信息详情
Oracle for Linux安装漏洞
- CNNVD编号:CNNVD-200003-012
- 危害等级: 中危
![图片[1]-Oracle for Linux安装漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-04-24/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2000-0206
- 漏洞类型:
竞争条件
- 发布时间:
2000-03-05
- 威胁类型:
本地
- 更新时间:
2005-05-02
- 厂 商:
oracle - 漏洞来源:
This vulnerability… -
漏洞简介
Linux Oracle 8.1.5.x版本的安装跟随符号链接并创建全局可读许可的orainstRoot.sh文件。本地用户利用此漏洞提升特权。
漏洞公告
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.
A suitable work around may be to create the orainstall directory prior to running the install scripts. This can be done as follows:
mkdir /tmp/orainstall
chmod 700 /tmp/orainstall
chown oracle:dba /tmp/orainstall
参考网址
来源: BID
名称: 1035
链接:http://www.securityfocus.com/bid/1035
来源: BUGTRAQ
名称: 20000305 Oracle installer problem
链接:http://archives.neohapsis.com/archives/bugtraq/2000-03/0023.html
受影响实体
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
