Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0711Oracle Oracle8i vulnerability

4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.5%
top 34.74%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Oracle Oracle8i
Timeline
PublishedApr 29
Latest updateApr 30

Description

The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.

CVSS vector

AV:L/AC:L/C:P/I:P/A:PExploitability: 3.9 | Impact: 6.4

Affected Packages1 packages

NVDoracle/oracle8i5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-4pfh-v638-25xp: The oratclsh interpreter in Oracle 82022-04-30
CVEList
CVE-1999-0711: The oratclsh interpreter in Oracle 82000-04-18

💥Exploits & PoCs

1
Exploit-DB
Oracle 8 - oratclsh Suid1999-04-29
CVE-1999-0711 — Oracle Oracle8i vulnerability | cvebase