Описание
crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when an editor is called to correct the error.
crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when an editor is called to correct the error.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2001-0559
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6508
- http://www.debian.org/security/2001/dsa-054
- http://www.linux-mandrake.com/en/security/2001/MDKSA-2001-050.php3
- http://www.novell.com/linux/security/advisories/2001_017_cron_txt.html
- http://www.securityfocus.com/archive/1/183029
- http://www.securityfocus.com/bid/2687
EPSS
CVE ID
Связанные уязвимости
crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when an editor is called to correct the error.
Уязвимости операционной системы Debian GNU/Linux, позволяющие локальному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS