CVE-2001-1041

Low

2.1/10

Summary

oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: PARTIAL
Confidentiality Impact: NONE
Availability Impact: NONE

References

Advisory Timeline

Published Aug 31, 2001

CVE-2001-1041

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS