CVE-2001-0833: Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the…

CVE-2001-0833 [HIGH] GHSA-3cfx-pw87-g2gg: Buffer overflow in otrcrep in Oracle 8 Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."

CVE-2001-0833 Oracle OTRCREP Oracle 8/9 - Home Environment Variable Buffer Overflow Oracle OTRCREP Oracle 8/9 - Home Environment Variable Buffer Overflow --- // source: https://www.securityfocus.com/bid/3139/info Oracle is an Enterprise level SQL database, supporting numerous features and options. It is distributed and maintained by Oracle Corporation. A buffer overflow has been discovered in the handling of $ORACLE_HOME by otrcrep. otrcrep is installed with the Oracle suite as a SUID oracle SGID dba binary. This buffer overflow may be exploited by a local user to overwrite stack variables, including the return address, and execute arbitrary code with the privileges of user oracle and group dba. /* * This vulnerability was researched by: * Juan Manuel Pascual Escriba * cc -o evolut otrcrep.c; ./evolut 300 0 */ #include #include #define BUFFER 300 #define OFFSET 0 #