Lucene search
PRIOn knowledge basePRION:CVE-2017-9525HistoryJun 09, 2017 - 4:29 p.m.
Design/Logic Flaw
2017-06-0916:29:00
PRIOn knowledge base
www.prio-n.com
3
In the cron package through 3.0pl1-128 on Debian, and through 3.0pl1-128ubuntu2 on Ubuntu, the postinst maintainer script allows for group-crontab-to-root privilege escalation via symlink attacks against unsafe usage of the chown and chmod programs.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cron | eq | <= 3.0pl1-128 | |
| debian_linux | eq | 8.0 | |
| debian_linux | eq | 9.0 |
Related
ubuntucve
ubuntucve
CVE-2017-9525
2017-06-09 00:00:00
cvelist
cvelist
CVE-2017-9525
2017-06-09 16:00:00
nessus
nessus
Ubuntu 16.04 ESM / 18.04 LTS : Cron regression (USN-5259-3)
2022-05-11 00:00:00
Debian DLA-2801-1 : cron - LTS security update
2021-10-30 00:00:00
Ubuntu 18.04 LTS : Cron vulnerabilities (USN-5259-2)
2022-05-06 00:00:00
cve
cve
CVE-2017-9525
2017-06-09 16:29:02
nvd
nvd
CVE-2017-9525
2017-06-09 16:29:02
debiancve
debiancve
CVE-2017-9525
2017-06-09 16:29:02
veracode
veracode
Privilege Escalation
2021-09-12 01:17:35
ubuntu
ubuntu
Cron vulnerabilities
2022-02-01 00:00:00
Cron regression
2022-05-11 00:00:00
Cron vulnerabilities
2022-05-06 00:00:00
cloudfoundry
cloudfoundry
USN-5259-3: Cron regression | Cloud Foundry
2022-07-29 00:00:00
USN-5259-2: Cron vulnerabilities | Cloud Foundry
2022-07-29 00:00:00
debian
debian
[SECURITY] [DLA 2801-1] cron security update
2021-10-30 18:16:57
[SECURITY] [DLA 1723-1] cron security update
2019-03-21 20:21:10
openvas
openvas
Debian: Security Advisory (DLA-1723-1)
2019-03-21 00:00:00
Debian: Security Advisory (DLA-2801-1)
2021-10-31 00:00:00
Ubuntu: Security Advisory (USN-5259-1)
2022-08-26 00:00:00
osv
osv
cron regression
2022-05-11 00:25:41
cron vulnerabilities
2022-05-06 08:42:24
cron vulnerabilities
2022-02-01 14:38:29