oidldapd 2.1.1.1 in Oracle 8.1.7 records log files in a directory (ldaplog) that has world-writable permissions, which may allow local users to delete logs and/or overwrite other files via a symlink attack.Referenceshttp://archives.neohapsis.com/archives/bugtraq/2000-12/0434.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/5804http://www.kb.cert.org/vuls/id/610904
