Back to search
CVE-2004-1031
Published: Nov 24, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20041115 Multiple Security Vulnerabilities in Fcron
third-party-advisory
x_refsource_IDEFENSE
11684
vdb-entry
x_refsource_BID
GLSA-200411-27
vendor-advisory
x_refsource_GENTOO
fcron-fcronsighup-restrictions-bypass(18076)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now