CVE-2004-1031
published 2005-03-01CVE-2004-1031: fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by…
PriorityP422high7.2CVSS 2.0
AVLACLAuNCCICAC
EPSS
0.37%
28.7th percentile
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| thibault_godouet | fcron | — | — |
| thibault_godouet | fcron | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://security.gentoo.org/glsa/glsa-200411-27.xmlhttp://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=falsehttp://www.securityfocus.com/bid/11684https://exchange.xforce.ibmcloud.com/vulnerabilities/18076http://security.gentoo.org/glsa/glsa-200411-27.xmlhttp://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=falsehttp://www.securityfocus.com/bid/11684https://exchange.xforce.ibmcloud.com/vulnerabilities/18076
2005-03-01
Published