Oracle libraries gain privileges

oracle-libraries-gain-privileges (16839) The risk level is classified as HighHigh Risk

Description:

Oracle Database Servers could allow a local attacker to gain elevated privileges on the server. By default, Oracle libraries that are installed are owned by Oracle. A local attacker with an oracle, ias, iasr2 or iasdb account could gain root privileges on the server.


Consequences:

Gain Privileges

Remedy:

No remedy available as of July 9, 2011.

References:

  • Full-Disclosure Mailing List, Fri Jul 30 2004 - 04:28:39 CDT : OPEN3S - Local Privilege Elevation through Oracle products (Unix Platform).
  • BID-10829: Oracle Database Default Library Directory Privilege Escalation Vulnerability
  • CVE-2004-1707: The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.
  • SA12205: Oracle9i Application Server Privilege Escalation Issue

Platforms Affected:

  • Oracle Application Server 1.0.2
  • Oracle Application Server 1.0.2.1s
  • Oracle Application Server 1.0.2.2
  • Oracle Application Server 1.0.2.2.2
  • Oracle Application Server 9.0.2
  • Oracle Application Server 9.0.2.0.0
  • Oracle Application Server 9.0.2.0.1
  • Oracle Application Server 9.0.2.1
  • Oracle Application Server 9.0.2.2
  • Oracle Application Server 9.0.2.3
  • Oracle Application Server 9.0.3
  • Oracle Application Server 9.0.3.1
  • Oracle Application Server Portal 3.0.9.8.5
  • Oracle Application Server Portal 9.0.2.3
  • Oracle Application Server Portal 9.0.2.3A
  • Oracle Application Server Portal 9.0.2.3B
  • Oracle Database Server 8.0.5.0.0 Enterprise
  • Oracle Database Server 8.0.6
  • Oracle Database Server 8.0.6.0.0 Enterprise
  • Oracle Database Server 8.0.6.0.1 Enterprise
  • Oracle Database Server 8.0.6.3
  • Oracle Database Server 8.1.5
  • Oracle Database Server 8.1.5.0.0 Enterprise
  • Oracle Database Server 8.1.5.0.2 Enterprise
  • Oracle Database Server 8.1.5.1.0 Enterprise
  • Oracle Database Server 8.1.6
  • Oracle Database Server 8.1.6.0.0 Enterprise
  • Oracle Database Server 8.1.6.1.0 Enterprise
  • Oracle Database Server 8.1.7
  • Oracle Database Server 8.1.7.0.0
  • Oracle Database Server 8.1.7.0.0 Enterprise
  • Oracle Database Server 8.1.7.1
  • Oracle Database Server 8.1.7.1.0 Enterprise
  • Oracle Database Server 8.1.7.4
  • Oracle Database Server 9.0
  • Oracle Database Server 9.0.1
  • Oracle Database Server 9.0.1.2
  • Oracle Database Server 9.0.1.3
  • Oracle Database Server 9.0.1.4
  • Oracle Database Server 9.0.1.5
  • Oracle Database Server 9.0.2
  • Oracle Database Server 9.0.2.4
  • Oracle Database Server 9.2
  • Oracle Database Server 9.2.0
  • Oracle Database Server 9.2.0.1
  • Oracle Database Server 9.2.0.3
  • Oracle Database Server 9.2.2
  • Oracle Database Server 9.2.3
  • Oracle Database Server Lite 5.0
  • Oracle Database Server Lite 5.0.1.0.0
  • Oracle Database Server Lite 5.0.2.0.0
  • Oracle Database Server Lite 5.0.2.9.0

Reported:

Jul 30, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page