Oracle Oracle8I vulnerabilities

CVE-2000-0986 [MEDIUM] CVE-2000-0986: Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsp Buffer overflow in Oracle 8.1.5 applications such as names, namesctl, onrsd, osslogin, tnslsnr, tnsping, trcasst, and trcroute possibly allow local users to gain privileges via a long ORACLE_HOME environmental variable.

CVE-2000-0206 [MEDIUM] CVE-2000-0206: The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file wit The installation of Oracle 8.1.5.x on Linux follows symlinks and creates the orainstRoot.sh file with world-writeable permissions, which allows local users to gain privileges.

CVE-1999-0888 [MEDIUM] CVE-1999-0888: dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME dbsnmp in Oracle Intelligent Agent allows local users to gain privileges by setting the ORACLE_HOME environmental variable, which dbsnmp uses to find the nmiconf.tcl script.

CVE-1999-0711 [MEDIUM] CVE-1999-0711: The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl The oratclsh interpreter in Oracle 8.x Intelligent Agent for Unix allows local users to execute Tcl commands as root.