Users login

Create an account »


Users login

Home » Hacking News » Vulnerability in otrcrep in Oracle 8.0.5

Vulnerability in otrcrep in Oracle 8.0.5

by phiber on August 3rd, 2001 There is a buffer overflow in otrcrep binary that can be use by local users to obtain euid of oracle user and egid to dba group.


Any user with local access, can gain euid= oracle and compromise the
integrity of DataBase.


Chmod -s


Download it here.

Vendor was contacted.

This vulnerability was researched by:
Juan Manuel Pascual Escriba (e-mail).

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.


Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »