Oracle Database Server Installation Security Bypass Vulnerability

Oracle Database Server Installation Security Bypass Vulnerability

The Oracle Database Server installation process is prone to a security-bypass vulnerability because of a design error. A small window of time exists during the installation process where attackers can access SYS or SYSTEM accounts.

Successful attacks will compromise the application or provide a means to launch further attacks.

This issue affects Oracle 10g and 11g.