PT-1999-1421 · Isc · Vixie Cron

Published

1999-08-25

Updated

2008-09-09

CVE-1999-0872

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Vixie cron (affected versions not specified)

Description A buffer overflow issue in Vixie cron allows local users to gain root access by setting a long MAILTO environment variable in a crontab file.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-0872

Affected Products

Vixie Cron

PT-1999-1421 · Isc · Vixie Cron

CVE-1999-0872

Related Identifiers

Affected Products

References · 3