CVE-1999-0297

3 documents3 sources
Severity
7.2HIGH
EPSS
0.1%
top 80.37%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Bsdi BSD OSFreebsd FreebsdNetbsd Netbsd+1 more
Timeline
PublishedDec 12
Latest updateApr 30

Description

Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDbsdi/bsd_os2.1

Also affects: Netbsd 2.0.4, Freebsd 2.1.0

🔴Vulnerability Details

2
GHSA
GHSA-52rx-xv44-hxmv: Buffer overflow in Vixie Cron library up to version 32022-04-30
CVEList
CVE-1999-0297: Buffer overflow in Vixie Cron library up to version 32000-01-04
CVE-1999-0297 (HIGH CVSS 7.2) | Buffer overflow in Vixie Cron libra | cvebase.io