Description

dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.

Remediation

References

CVE-1999-0888

Related Vulnerabilities

Oracle Database Server CVE-2009-1967 Vulnerability (CVE-2009-1967)

WordPress Plugin Target First Live chat Unspecified Vulnerability (1.0)

WordPress Plugin Plug your WooCommerce into the largest catalog of customized print products from Helloprint Cross-Site Scripting (1.4.6)

osCommerce Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2002-1991)

WordPress Plugin LBstopattack Cross-Site Request Forgery (1.1.2)

Severity

Medium

Classification

CVE-1999-0888

Tags

Missing Update Known Vulnerabilities