CVE-2001-0832

Name of the Vulnerable Software and Affected Versions Oracle versions 8.0.x through 9.0.1

Description The issue allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in the ORACLE HOME/rdbms/log directory or an alternate directory as specified in the ORACLE HOME environmental variable.

Recommendations For Oracle versions 8.0.x through 9.0.1, consider restricting write access to the ORACLE HOME/rdbms/log directory and any alternate directories specified in the ORACLE HOME environmental variable to prevent arbitrary file overwrites. At the moment, there is no information about a newer version that contains a fix for this vulnerability.