Vixie Cron crontab Privilege Lowering Failure Vulnerability

Bugtraq ID: 2687
Class: Serialization Error
CVE:
Remote: No
Local: Yes
Published: May 07 2001 12:00AM
Updated: May 07 2001 12:00AM
Credit: Initially posted to Bugtraq in a Debian Security Advisory (DSA-054-1) on May 7, 2001. Reportedly discovered by Sebastian Krahmer <krahmer@suse.de>.
Vulnerable: Paul Vixie Vixie Cron 3.0.1
+ S.u.S.E. Linux 7.1 x86
+ S.u.S.E. Linux 7.1 sparc
+ S.u.S.E. Linux 7.1 ppc
+ S.u.S.E. Linux 7.1
Paul Vixie Vixie Cron 3.0 pl1
+ Conectiva Linux 8.0
+ Conectiva Linux 7.0
+ Conectiva Linux 6.0
+ Debian Linux 2.2 sparc
+ Debian Linux 2.2 powerpc
+ Debian Linux 2.2 arm
+ Debian Linux 2.2 alpha
+ Debian Linux 2.2 68k
+ Debian Linux 2.2
+ Progeny Debian 1.0
Not Vulnerable: S.u.S.E. Linux 7.1 alpha
RedHat Linux 7.1
RedHat Linux 7.0
RedHat Linux 6.1
Red Hat Linux 6.2
Paul Vixie Vixie Cron 3.0 pl1-67
+ Debian Linux 2.2 sparc
+ Debian Linux 2.2 powerpc
+ Debian Linux 2.2 arm
+ Debian Linux 2.2 alpha
+ Debian Linux 2.2 68k
+ Debian Linux 2.2


 

Privacy Statement
Copyright 2010, SecurityFocus