VYPR
← All advisories
Unrated severityNVD Advisory· Published Nov 30, 2001· Updated Apr 16, 2026

CVE-2001-0941

CVE-2001-0941

Description

Buffer overflow in dbsnmp in Oracle 8.0.6 through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Buffer overflow in Oracle's dbsnmp setuid binary via long ORACLE_HOME allows local privilege escalation to oracle account.

Vulnerability

Buffer overflow in the dbsnmp executable (part of Oracle Enterprise Manager Intelligent Agent) in Oracle versions 8.0.6 through 9.0.1. The overflow occurs when the ORACLE_HOME environment variable exceeds approximately 750 bytes. The dbsnmp binary is installed with the setuid bit set, making it run with elevated privileges. [1]

Exploitation

A local attacker can set the ORACLE_HOME environment variable to a value longer than 750 bytes before executing dbsnmp. The overflow corrupts memory, allowing the attacker to control execution flow. No authentication beyond local shell access is required. The attacker must have the ability to set environment variables and execute the binary. [1]

Impact

Successful exploitation allows the attacker to execute arbitrary code with the privileges of the Oracle operating system account (typically oracle). This results in local privilege escalation from an unprivileged user to the Oracle account, potentially leading to full compromise of the Oracle installation and associated data. [1]

Mitigation

Oracle released a patch available from Oracle Metalink (now Oracle Support). Alternatively, administrators can remove the setuid bit from dbsnmp using chmod -s dbsnmp if the Intelligent Agent is not required. The vulnerability affects Oracle versions 8.0.6 through 9.0.1 on Unix/Linux platforms only. [1]

References
  1. 'ASI Oracle Security Alert: Oracle Home Environment Variable Buffer Overflow'

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

5
  • Oracle Corporation/Database Server4 versions
    cpe:2.3:a:oracle:database_server:8.0.6:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:oracle:database_server:8.0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:8.1.6:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:8.1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:oracle:database_server:9.0.1:*:*:*:*:*:*:*
  • Oracle Corporation/Oracle 9i Databasellm-fuzzy
    Range: >=8.0.6 <=9.0.1

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

4

News mentions

0

No linked articles in our index yet.