Vulnerability Description
fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain sensitive information by calling fcronsighup with an arbitrary file, which reveals the contents of the file that can not be parsed in an error message.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Thibault Godouet | Fcron | 2.0.1 |
| Gentoo | Linux | All versions |
References
- http://security.gentoo.org/glsa/glsa-200411-27.xml
- http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flas
- http://www.securityfocus.com/bid/11684PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18075
- http://security.gentoo.org/glsa/glsa-200411-27.xml
- http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flas
- http://www.securityfocus.com/bid/11684PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18075
FAQ
What is CVE-2004-1030?
CVE-2004-1030 is a vulnerability with a CVSS score of 2.1 (LOW). fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to gain sensitive information by calling fcronsighup with an arbitrary file, which reveals the contents of the file ...
How severe is CVE-2004-1030?
CVE-2004-1030 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1030?
Check the references section above for vendor advisories and patch information. Affected products include: Thibault Godouet Fcron, Gentoo Linux.