{"vuid":"VU#610904","idnumber":"610904","name":"Oracle Internet Directory LDAP Daemon does not check write permissions properly","keywords":["Oracle","OID","oidldapd","write"],"overview":"The Oracle LDAP Daemon (oidldapd version 2.1.1.1), which ships with Oracle version 8i for Linux version 8.1.7, does not check write permissions properly. This can allow a local user to delete or write to any file on the system.","clean_desc":"The Oracle LDAP Daemon (oidldapd version 2.1.1.1) does not check write permissions properly. It generates log files in a directory (ldaplog) that has world-writable permissions. This can be used by local users to erase log files. In conjunction with a symlink attack, a local user can write to or delete any file on the local machine.","impact":"A local user can write to or delete any file on the system.","resolution":"Oracle encourages all Linux directory developers to download the upcoming production version of Oracle Internet Directory, v2.1.1, part of the Oracle 8.1.7 (8i Release 3) server  media pack, from http://technet.oracle.com/.","workarounds":"Use chmod to set the file permissions to 710 for the oidldapd and oidmon executables. This will restrict access to privileged users only.","sysaffected":"","thanks":"This vulnerability was first published by Juan Manuel Pascual Escriba in a Plazasite advisory.","author":"This document was written by Jason Rafail.","public":["http://www.securityfocus.com/templates/archive.pike?list=1&mid=152620","http://xforce.iss.net/static/5804.php"],"cveids":["CVE-2001-0300"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2001-01-12T19:45:38Z","publicdate":"2000-12-22T00:00:00Z","datefirstpublished":"2001-07-09T14:49:57Z","dateupdated":"2001-07-09T14:54:20Z","revision":23,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"10","cam_impact":"8","cam_easeofexploitation":"10","cam_attackeraccessrequired":"10","cam_scorecurrent":"3","cam_scorecurrentwidelyknown":"3.75","cam_scorecurrentwidelyknownexploited":"6.75","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":3.0,"vulnote":null}