CVE-1999-0888

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Published Aug 16, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0888 is a vulnerability affecting the dbsnmp component of Oracle Intelligent Agent. Maliciously setting the ORACLE_HOME environmental variable allows local users to gain elevated privileges by manipulating the location of the nmiconf.tcl script used by dbsnmp. This issue can lead to unauthorized access and potential data breaches. Oracle released a patch to address this vulnerability in 1999. It is crucial for organizations using Oracle Intelligent Agent to apply the patch and secure their environment against this potential threat.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Oracle Database Server

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlTtP
https://www.cve.org/CVERecord?id=CVE-1999-0888
https://nvd.nist.gov/vuln/detail/CVE-1999-0888

Back to Vulnerability Database

CVE-1999-0888

CVSS 2.0 Score 4.6 of 10 (medium)

Details

Summary

Affected Products

Advisories, Assessments, and Mitigations