Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0206. PoCs published by Keyser Soze.
AI-analyzed exploit summary This exploit leverages a race condition in Oracle 8.1.5i's installation process to create a symbolic link from /tmp/orainstall/orainstRoot.sh to /.rhosts, allowing arbitrary command execution as root when the installer runs the script.
Description
The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.
Exploits (1)
This exploit leverages a race condition in Oracle 8.1.5i's installation process to create a symbolic link from /tmp/orainstall/orainstRoot.sh to /.rhosts, allowing arbitrary command execution as root when the installer runs the script.