Description: Knud Erik Højgaard has reported a security issue in Oracle Database 10g, allowing malicious users to manipulate temporary files.
The problem is that certain files placed in "/tmp" are created using 777 permissions. This may allow malicious users to manipulate files during installation.
This has been reported in version 10g. Other versions may also be affected.
Solution: Do not install the product on a system with untrusted users.
Provided and/or discovered by: Knud Erik Højgaard
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
21 Related Secunia Security Advisories, displaying 10
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
