Weak permissions for memories sections and named pipes inside oracle process allow code execution with local system account.
CVE:
CVE-2007-1442 (Oracle Database 10g uses a NULL pDacl parameter when calling the SetSecurityDescriptorDacl function to create discretionary access control lists (DACLs), which allows local users to gain privileges.)
