CVE-2004-1031

N/A Unknown

Published: March 01, 2005 Modified: April 16, 2026

Description

fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://security.gentoo.org/glsa/glsa-200411-27.xml

Source: cve@mitre.org

http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=false

Source: cve@mitre.org

http://www.securityfocus.com/bid/11684

Source: cve@mitre.org

Patch Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18076

Source: cve@mitre.org

http://security.gentoo.org/glsa/glsa-200411-27.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.idefense.com/application/poi/display?id=157&type=vulnerabilities&flashstatus=false

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/11684

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/18076

Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.0%

14th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

thibault_godouet gentoo