CVE-2011-1075 in FreeBSDinformação

Sumário

de MITRE • 19/10/2021

FreeBSD's crontab calculates the MD5 sum of the previous and new cronjob to determine if any changes have been made before copying the new version in. In particular, it uses the MD5File() function, which takes a pathname as an argument, and is called with euid 0. A race condition in this process may lead to an arbitrary MD5 comparison regardless of the read permissions.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

24/02/2011

Divulgação

19/10/2021

Moderação

aceite

Entrada

VDB-184615

CPE

pronto

CWE

CWE-362 (confirmado)

CVSS

2.6 (VulDB)

EPSS

0.00734

KEV

não

Atividades

muito baixo

Sector

Energy, Insurance, ...

Fontes

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1075
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1075
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1075/

◂ Voltar Visão Geral Próximo ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!