Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local malicious users to gain root privileges by modifying the files before the permissions are changed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap sap db 7.4.3.7_beta |
||
sap sap db 7.3.29 |