SAP SAPDBA Local Privilege Escalation Vulnerability

Bugtraq ID:	18028
Class:	Unknown
CVE:
Remote:	No
Local:	Yes
Published:	May 18 2006 12:00AM
Updated:	May 18 2006 07:13PM
Credit:	CYBSEC S.A. discovered this issue.
Vulnerable:	SAP sapdba for Informix 0
Not Vulnerable:

SAP SAPDBA Local Privilege Escalation Vulnerability

SAP sapdba is susceptible to a local privilege-escalation vulnerability. This issue is due to an unspecified flaw in environment-variable handling.

This issue allows local attackers to gain Informix user privileges, potentially aiding them in further attacks.

This issue affects the sapdba command for Informix versions prior to 700, and version 700 up to patch number 100.

SAP SAPDBA Local Privilege Escalation Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]

SAP SAPDBA Local Privilege Escalation Vulnerability

Solution:
SAP note 944585 is reportedly available, along with fixes to address this issue. Users of affected packages should contact the vendor for further information.

SAP SAPDBA Local Privilege Escalation Vulnerability

References:

• Local Privilege Escalation in SAP sapdba Command (CYBSEC)
  
• SAP Homepage (SAP)