Thibault Godouet: >> Fcron >> 3.0.0 Security Vulnerabilities
fcrontab in fcron before 3.0.5 allows local users to read arbitrary files via a symlink attack on an unspecified file.
CVSS Score
1.9
EPSS Score
0.0
Published
2010-03-05
convert-fcrontab in Fcron 2.9.5 and 3.0.0 allows remote attackers to create or overwrite arbitrary files via ".." sequences and a symlink attack on the temporary file that is used during conversion.
CVSS Score
5.0
EPSS Score
0.006
Published
2006-02-07
The convert-fcrontab program in fcron 3.0.0 might allow local users to gain privileges via a long command-line argument, which causes Linux glibc to report heap memory corruption, possibly because a strcpy in the strdup2 function can "overwrite some data."
CVSS Score
4.6
EPSS Score
0.002
Published
2006-02-04