Description

dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.

Remediation

References

CVE-1999-0888

Related Vulnerabilities

WordPress Plugin NextGEN Gallery-WordPress Gallery Directory Traversal (2.1.9)

Oracle JRE CVE-2014-0461 Vulnerability (CVE-2014-0461)

Internet Information Services Other Vulnerability (CVE-1999-1223)

WordPress Plugin Form Builder-Create Responsive Contact Forms Cross-Site Scripting (1.9.8.3)

WordPress Plugin WPtouch Cross-Site Request Forgery (1.9.31)

Severity

Medium

Classification

CVE-1999-0888

Tags

Missing Update Known Vulnerabilities