BY removing the suid bit from oracle, ay client connection originated from non-oracle user will cause oracle to revert to tcp connection instead of pipe. be prepared to a considerable performance degrading if you choose this tactic. _rony -----Original Message----- From: paskat_private [mailto:paskat_private] Sent: 02 August 2001 08:57 To: bugtraqat_private; oracle-lat_private Subject: vulnerability in oracle binary in Oracle 8.0.5 - 8.1.6 Title: Vulnerability in oracle binary in Oracle 8.0.5 .... SOLUTION: Chmod -s ;-)))). STATUS: Vendor was contacted . ---------------- This vulnerability was researched by: Juan Manuel Pascual Escriba paskat_private --- Outgoing mail is certified Virus Free. Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.265 / Virus Database: 137 - Release Date: 18/07/2001
This archive was generated by hypermail 2b30 : Sat Aug 04 2001 - 20:04:15 PDT