CVE-1999-0872

Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file.

Score7.2
Access VectorLOCAL
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactCOMPLETE
Integrity ImpactCOMPLETE
Availability ImpactCOMPLETE
Published1999-08-25 12:00:00.000-04
Last Modified2008-09-09 08:36:06.000-04

Vulnerable Software List

VendorProductVersions
Paul Vixie Vixie Cron 3.0 pl1
Debian Debian Linux 2.1, 2.2
Caldera Openlinux 2.2
Redhat Linux 4.0, 4.1, 4.2, 5.0, 5.1, 5.2::i386, 6.0::i386

References

SourceLink
BID611
BID759