Exploitation Summary
EIP tracks 1 public exploit for CVE-1999-0711. PoCs published by Dan Sugalski.
AI-analyzed exploit summary This exploit leverages a misconfigured SUID binary (oratclsh) in Oracle8 to execute arbitrary TCL commands as root, allowing an attacker to append a new user to /etc/passwd and /etc/shadow for privilege escalation.
Description
The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Dan Sugalski · textlocallinux
https://www.exploit-db.com/exploits/19125
This exploit leverages a misconfigured SUID binary (oratclsh) in Oracle8 to execute arbitrary TCL commands as root, allowing an attacker to append a new user to /etc/passwd and /etc/shadow for privilege escalation.
Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target:
Oracle8 with Intelligent Agent option
No auth needed
Prerequisites:
Oracle8 installed with Intelligent Agent option · root.sh executed during installation · oratclsh binary with SUID bit set
devstral-2 · analyzed Feb 16, 2026
Full analysis →
References (2)
Core 2
Core References
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?t=92550157100002&w=2&r=1
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=92609807906778&w=2
Scores
EPSS
0.0120
EPSS Percentile
64.5%
Details
Status
published
Products (5)
oracle/oracle8i
8.0.3
oracle/oracle8i
8.0.4
oracle/oracle8i
8.0.5
oracle/oracle8i
8.0.5.1
oracle/oracle8i
8.1.5
Published
Apr 29, 1999
Tracked Since
Feb 18, 2026