4.6
CVE-2006-0539
- EPSS 0.76%
- Veröffentlicht 04.02.2006 02:02:00
- Zuletzt bearbeitet 16.06.2026 22:20:48
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The convert-fcrontab program in fcron 3.0.0 might allow local users to gain privileges via a long command-line argument, which causes Linux glibc to report heap memory corruption, possibly because a strcpy in the strdup2 function can "overwrite some data."
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Thibault Godouet ≫ Fcron Version3.0.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.76% | 0.503 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0999.html
http://fcron.free.fr/doc/en/changes.html
http://fcron.free.fr/news.php#a20060206a.xml
http://secunia.com/advisories/18719
http://www.securityfocus.com/archive/1/423697/100/0/threaded
http://www.securityfocus.com/bid/16467
http://www.trustix.org/errata/2006/0036
http://www.vupen.com/english/advisories/2006/0435
https://bugs.trustix.org/show_bug.cgi?id=1754
https://exchange.xforce.ibmcloud.com/vulnerabilities/24444