CVE-2000-0206 — MEDIUM (6.2)

Vulnerability Description

The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.

CVSS Score

6.2

MEDIUM

AV:L/AC:H/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Oracle	Oracle8I	8.1.5

References

http://archives.neohapsis.com/archives/bugtraq/2000-03/0023.html
http://www.securityfocus.com/bid/1035
http://archives.neohapsis.com/archives/bugtraq/2000-03/0023.html
http://www.securityfocus.com/bid/1035

FAQ

What is CVE-2000-0206?

CVE-2000-0206 is a vulnerability with a CVSS score of 6.2 (MEDIUM). The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.

How severe is CVE-2000-0206?

CVE-2000-0206 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2000-0206?

Check the references section above for vendor advisories and patch information. Affected products include: Oracle Oracle8I.