Lucene search
HistoryMar 01, 2005 - 5:00 a.m.
CVE-2004-1033
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable.
Affected configurations
Node
thibault_godouetfcronMatch2.0.1
ORthibault_godouetfcronMatch2.9.4
Node
gentoolinux
| Vendor | Product | Version | CPE |
|---|---|---|---|
| thibault_godouet | fcron | 2.0.1 | cpe:2.3:a:thibault_godouet:fcron:2.0.1:*:*:*:*:*:*:* |
| thibault_godouet | fcron | 2.9.4 | cpe:2.3:a:thibault_godouet:fcron:2.9.4:*:*:*:*:*:*:* |
| gentoo | linux | * | cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-1033
2004-11-24 05:00:00
ubuntucve
ubuntucve
CVE-2004-1033
2005-03-01 00:00:00
cve
cve
CVE-2004-1033
2005-03-01 05:00:00
freebsd
freebsd
fcron -- multiple vulnerabilities
2004-11-15 00:00:00
nessus
nessus
FreeBSD : fcron -- multiple vulnerabilities (e480ccb2-6bc8-11d9-8dbe-000a95bc6fae)
2005-07-13 00:00:00
GLSA-200411-27 : Fcron: Multiple vulnerabilities
2004-11-19 00:00:00
gentoo
gentoo
Fcron: Multiple vulnerabilities
2004-11-18 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200411-27 (fcron)
2008-09-24 00:00:00
FreeBSD Ports: fcron
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200411-27 (fcron)
2008-09-24 00:00:00
CVSS2
2.1
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:L/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0
Percentile
5.1%
Related for NVD:CVE-2004-1033