← back
CVE-2004-1033

CVE-2004-1033

EPSS 0.4%
Fcron 2.0.1, 2.9.4, and possibly earlier versions leak file descriptors of open files, which allows local users to bypass access restrictions and read fcron.allow and fcron.deny via the EDITOR environment variable.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://security.gentoo.org/glsa/glsa-200411-27.xmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/18078http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=falsehttp://www.securityfocus.com/bid/11684