Vulnerability Details CVE-2004-1030
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain sensitive information by calling fcronsighup with an arbitrary file, which reveals the contents of the file that can not be parsed in an error message.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 22.5%
CVSS Severity
CVSS v2 Score 2.1
References
- http://security.gentoo.org/glsa/glsa-200411-27.xml
- http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=false
- http://www.securityfocus.com/bid/11684
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18075
- http://security.gentoo.org/glsa/glsa-200411-27.xml
- http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=false
- http://www.securityfocus.com/bid/11684
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18075
Products affected by CVE-2004-1030
-
cpe:2.3:a:thibault_godouet:fcron:2.0.1
-
cpe:2.3:a:thibault_godouet:fcron:2.9.4
-
cpe:2.3:o:gentoo:linux:-
-
cpe:2.3:o:gentoo:linux:1.2
-
cpe:2.3:o:gentoo:linux:1.4
-
cpe:2.3:o:gentoo:linux:2.1.30
-
cpe:2.3:o:gentoo:linux:2.2.28
-
cpe:2.3:o:gentoo:linux:2.3.30