Description
The (1) dbsnmp and (2) nmo programs in Oracle 8i, Oracle 9i, and Oracle IAS 9.0.2.0.1, on Unix systems, use a default path to find and execute library files while operating at raised privileges, which allows certain Oracle user accounts to gain root privileges via a modified libclntsh.so.9.0.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Juan Manuel Pascual Escribá · textlocalunix
https://www.exploit-db.com/exploits/24335
References (4)
Core 4
Core References
Exploit, Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12205
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16839
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=109147677214087&w=2
Vendor Advisory vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/10829
Scores
EPSS
0.1230
EPSS Percentile
93.9%
Details
Status
published
Products (50)
oracle/application_server
oracle/application_server
1.0.2
oracle/application_server
1.0.2.1s
oracle/application_server
1.0.2.2
oracle/application_server
1.0.2.2.2
oracle/application_server
9.0.2
oracle/application_server
9.0.2.0.0
oracle/application_server
9.0.2.0.1
oracle/application_server
9.0.2.1
oracle/application_server
9.0.2.2
... and 40 more
Published
Jul 30, 2004
Tracked Since
Feb 18, 2026