lserver in SAP DB 7.3 and previous versions uses the current working directory to find and execute the lserversrv program, which allows local users to gain privileges with a malicious lserversrv that is called from a directory that has a symlink to the lserver program.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sap sap db 7.3.00 |