Fcron Security Vulnerabilities and Issues — Fcron CVE List

Lucene search

Thibault GodouetFcron

4 matches found

CVE•added 2005/03/01 5:0 a.m.•50 views

CVE-2004-1033

Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable.

2.1CVSS6AI score0.00071EPSS

CVE•added 2005/03/01 5:0 a.m.•48 views

CVE-2004-1030

fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain sensitive information by calling fcronsighup with an arbitrary file, which reveals the contents of the file that can not be parsed in an error message.

2.1CVSS6AI score0.00071EPSS

CVE•added 2005/03/01 5:0 a.m.•43 views

CVE-2004-1032

fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete arbitrary files or create arbitrary empty files via a target filename with a large number of leading slash (/) characters such that fcronsighup does not properly append the intended fcrontab.sig to the res...

2.1CVSS6.2AI score0.00059EPSS

CVE•added 2002/03/09 5:0 a.m.•42 views

CVE-2001-0685

Thibault Godouet FCron prior to 1.1.1 allows a local user to corrupt another user's crontab file via a symlink attack on the fcrontab temporary file.

2.6CVSS6.6AI score0.0016EPSS