Race condition in SDBINST for SAP database 7.3.0.29 creates critical files with world-writable permissions before initializing the setuid bits, which allows local attackers to gain root privileges by modifying the files before the permissions are changed.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Sap_db | Sap | 7.3.29 (including) | 7.3.29 (including) |
Sap_db | Sap | 7.4.3.7_beta (including) | 7.4.3.7_beta (including) |