CVE-2001-0832
https://notcve.org/view.php?id=CVE-2001-0832
Vulnerability in Oracle 8.0.x through 9.0.1 on Unix allows local users to overwrite arbitrary files, possibly via a symlink attack or incorrect file permissions in (1) the ORACLE_HOME/rdbms/log directory or (2) an alternate directory as specified in the ORACLE_HOME environmental variable, aka the "Oracle File Overwrite Security Vulnerability." • http://marc.info/?l=bugtraq&m=100386756715645&w=2 http://otn.oracle.com/deploy/security/pdf/oracle_race.pdf •
CVE-2001-1041
https://notcve.org/view.php?id=CVE-2001-1041
oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory identified by the ORACLE_HOME environment variable. • http://marc.info/?l=bugtraq&m=100395579811880&w=2 http://marc.info/?l=bugtraq&m=99677282117387&w=2 http://otn.oracle.com/deploy/security/pdf/oracle_race.pdf http://www.securityfocus.com/bid/3135 •