2.1
CVE-2012-6110
- EPSS 0.43%
- Veröffentlicht 29.09.2014 22:55:05
- Zuletzt bearbeitet 06.05.2026 22:30:45
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Loginbcron-exec in bcron before 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Bcron Project ≫ Bcron Exec Version <= 0.09
Bcron Project ≫ Bcron Exec Version0.04
Bcron Project ≫ Bcron Exec Version0.05
Bcron Project ≫ Bcron Exec Version0.06
Bcron Project ≫ Bcron Exec Version0.07
Bcron Project ≫ Bcron Exec Version0.08
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.43% | 0.341 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 2.1 | 3.9 | 2.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:N
|
http://seclists.org/oss-sec/2013/q1/102
http://untroubled.org/bcron/NEWS
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686650
https://exchange.xforce.ibmcloud.com/vulnerabilities/81383