Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-1032
HistoryMar 01, 2005 - 5:00 a.m.

CVE-2004-1032

2005-03-0105:00:00
mitre
web.nvd.nist.gov
29
fcron
vulnerability
local users
file deletion
file creation
security issue

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0

Percentile

5.1%

JSON

fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to delete arbitrary files or create arbitrary empty files via a target filename with a large number of leading slash (/) characters such that fcronsighup does not properly append the intended fcrontab.sig to the resulting string.

Affected configurations

Nvd
Node
thibault_godouetfcronMatch2.0.1
OR
thibault_godouetfcronMatch2.9.4
Node
gentoolinux
VendorProductVersionCPE
thibault_godouetfcron2.0.1cpe:2.3:a:thibault_godouet:fcron:2.0.1:*:*:*:*:*:*:*
thibault_godouetfcron2.9.4cpe:2.3:a:thibault_godouet:fcron:2.9.4:*:*:*:*:*:*:*
gentoolinux*cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:*

Related

cvelist 1
nvd 1
ubuntucve 1
nessus 2
gentoo 1
freebsd 1
openvas 4
cvelist
cvelist
CVE-2004-1032
2004-11-24 05:00:00
nvd
nvd
CVE-2004-1032
2005-03-01 05:00:00
ubuntucve
ubuntucve
CVE-2004-1032
2005-03-01 00:00:00
nessus
nessus
FreeBSD : fcron -- multiple vulnerabilities (e480ccb2-6bc8-11d9-8dbe-000a95bc6fae)
2005-07-13 00:00:00
GLSA-200411-27 : Fcron: Multiple vulnerabilities
2004-11-19 00:00:00
gentoo
gentoo
Fcron: Multiple vulnerabilities
2004-11-18 00:00:00
freebsd
freebsd
fcron -- multiple vulnerabilities
2004-11-15 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200411-27 (fcron)
2008-09-24 00:00:00
FreeBSD Ports: fcron
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200411-27 (fcron)
2008-09-24 00:00:00

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.2

Confidence

Low

EPSS

0

Percentile

5.1%

JSON
Related for CVE-2004-1032
cvelist1nvd1ubuntucve1nessus2gentoo1freebsd1openvas4