CVE-1999-0711

Oracle 8.x - Local Privilege Escalation

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0711. PoCs published by Dan Sugalski.

AI-analyzed exploit summary This exploit leverages a misconfigured SUID binary (oratclsh) in Oracle8 to execute arbitrary TCL commands as root, allowing an attacker to append a new user to /etc/passwd and /etc/shadow for privilege escalation.

Description

The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Dan Sugalski · textlocallinux
https://www.exploit-db.com/exploits/19125

This exploit leverages a misconfigured SUID binary (oratclsh) in Oracle8 to execute arbitrary TCL commands as root, allowing an attacker to append a new user to /etc/passwd and /etc/shadow for privilege escalation.

Classification
Working Poc 100%
Attack Type
Lpe
Complexity
Trivial
Reliability
Reliable
Target: Oracle8 with Intelligent Agent option
No auth needed
Prerequisites: Oracle8 installed with Intelligent Agent option · root.sh executed during installation · oratclsh binary with SUID bit set
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?t=92550157100002&w=2&r=1
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=92609807906778&w=2

Scores

EPSS 0.0120
EPSS Percentile 64.5%

Details

Status published
Products (5)
oracle/oracle8i 8.0.3
oracle/oracle8i 8.0.4
oracle/oracle8i 8.0.5
oracle/oracle8i 8.0.5.1
oracle/oracle8i 8.1.5
Published Apr 29, 1999
Tracked Since Feb 18, 2026