CVE-1999-0769

Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable.

Score7.2
Access VectorLOCAL
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactCOMPLETE
Integrity ImpactCOMPLETE
Availability ImpactCOMPLETE
Published1999-08-25 12:00:00.000-04
Last Modified2008-09-09 08:35:21.000-04

Vulnerable Software List

VendorProductVersions
Paul Vixie Vixie Cron 3.0 pl1
Debian Debian Linux 2.1, 2.2
Caldera Openlinux 2.2
Redhat Linux 4.0, 4.1, 4.2, 5.0, 5.1, 5.2::i386, 6.0::i386

References

SourceLink
BID611