CVE-2007-4393
First published: Fri Aug 17 2007(Updated: )
The installation script for orarun on SUSE Linux before 20070810 places the oracle user into the disk group, which allows the local oracle user to read or write raw disk partitions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SUSE Linux |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2007-4393?
CVE-2007-4393 is considered a high severity vulnerability due to the potential for unauthorized access to raw disk partitions.
How do I fix CVE-2007-4393?
To fix CVE-2007-4393, remove the oracle user from the disk group to prevent unauthorized access to raw disk partitions.
What software is affected by CVE-2007-4393?
CVE-2007-4393 affects SUSE Linux installations prior to 20070810.
What can an attacker do exploiting CVE-2007-4393?
An attacker exploiting CVE-2007-4393 can read or write raw disk partitions, potentially leading to data loss or corruption.
Is CVE-2007-4393 a local or remote vulnerability?
CVE-2007-4393 is a local vulnerability that requires access to the system to exploit.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/suse
- canonical/suse linux