CVE-2004-1707 Information

Description

The (1) dbsnmp and (2) nmo programs in Oracle 8i Oracle 9i and Oracle IAS 9.0.2.0.1 on Unix systems use a default path to find and execute library files while operating at raised privileges which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.

Reference

http://marc.info/?l=bugtraq&m=109147677214087&w=2 http://secunia.com/advisories/12205 http://www.securityfocus.com/bid/10829 https://exchange.xforce.ibmcloud.com/vulnerabilities/16839