CVE-2004-1033 in fcroninfo

Summary

fcron 2.0.1 2.9.4 and possibly earlier versions leak file descriptors of open files which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the editor environment variable.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

11/12/2004

Disclosure

03/01/2005

Moderation

VulDB entry created

Entries

VDB-24011 (1)

CPE

ready

CWE

CWE-200 (Confirmed)

CVSS

4.0

EPSS

0.00071

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-1033
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-1033
CVE Details	https://www.cvedetails.com/cve/CVE-2004-1033/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!