Buffer overflow in otrcrep in Oracle 8.0.x through 9.0.1 allows local users to execute arbitrary code via a long ORACLE_HOME environment variable, aka the "Oracle Trace Collection Security Vulnerability."
https://exchange.xforce.ibmcloud.com/vulnerabilities/6940
http://www.securityfocus.com/bid/3139
http://www.ciac.org/ciac/bulletins/m-011.shtml
http://otn.oracle.com/deploy/security/pdf/otrcrep.pdf
http://online.securityfocus.com/archive/1/222612