Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2010-0424HistoryFeb 25, 2010 - 7:30 p.m.
CVE-2010-0424
2010-02-2519:30:00
Debian Security Bug Tracker
security-tracker.debian.org
14
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | cron | < 3.0pl1-162 | cron_3.0pl1-162_all.deb |
| Debian | 11 | all | cron | < 3.0pl1-137 | cron_3.0pl1-137_all.deb |
| Debian | 999 | all | cron | < 3.0pl1-189 | cron_3.0pl1-189_all.deb |
| Debian | 13 | all | cron | < 3.0pl1-189 | cron_3.0pl1-189_all.deb |
Related
nessus
nessus
Fedora 13 : cronie-1.4.4-1.fc13 (2010-3642)
2010-07-01 00:00:00
SuSE 11 Security Update : cron (SAT Patch Number 2027)
2010-03-19 00:00:00
openvas
openvas
Fedora Update for cronie FEDORA-2010-4300
2010-03-22 00:00:00
Gentoo Security Advisory GLSA 201311-04
2015-09-29 00:00:00
Fedora Update for cronie FEDORA-2010-4300
2010-03-22 00:00:00
fedora
fedora
[SECURITY] Fedora 13 Update: cronie-1.4.4-1.fc13
2010-03-05 03:33:16
[SECURITY] Fedora 11 Update: cronie-1.3-4.fc11
2010-03-16 00:42:42
[SECURITY] Fedora 12 Update: cronie-1.4.3-4.fc12
2010-02-24 06:12:41
nvd
nvd
CVE-2010-0424
2010-02-25 19:30:00
redhat
redhat
(RHSA-2012:0304) Low: vixie-cron security, bug fix, and enhancement update
2012-02-21 00:00:00
(RHSA-2012:0168) Important: rhev-hypervisor5 security and bug fix update
2012-02-21 00:00:00
gentoo
gentoo
Vixie cron: Denial of service
2013-11-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:10:19
cvelist
cvelist
CVE-2010-0424
2010-02-25 19:00:00
cve
cve
CVE-2010-0424
2010-02-25 19:30:00
oraclelinux
oraclelinux
vixie-cron security, bug fix, and enhancement update
2012-03-01 00:00:00
ubuntucve
ubuntucve
CVE-2010-0424
2010-02-25 00:00:00
prion
prion
Directory traversal
2010-02-25 19:30:00
3.3 Low
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:M/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for DEBIANCVE:CVE-2010-0424