CVE Vulnerabilities

CVE-2004-1033

Published: Mar 01, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
2.1 LOW
AV:L/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable.

Affected Software

Name Vendor Start Version End Version
Fcron Thibault_godouet 2.0.1 2.0.1
Fcron Thibault_godouet 2.9.4 2.9.4
Fcron Ubuntu dapper *
Fcron Ubuntu devel *
Fcron Ubuntu edgy *
Fcron Ubuntu feisty *

References