CVE-2003-0265

Name of the Vulnerable Software and Affected Versions: SAP database version 7.3.0.29

Description: A race condition issue exists in SDBINST for the SAP database, where critical files are created with world-writable permissions before the setuid bits are initialized. This allows local attackers to potentially gain root privileges by modifying these files before the permissions are changed.

Recommendations: For SAP database version 7.3.0.29, consider restricting access to the SDBINST installation process until a fix is available, and ensure that all files created during the installation have appropriate permissions set immediately to prevent unauthorized modifications.