Published: 29/09/2014 Updated: 29/08/2017

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

bcron-exec in bcron prior to 0.10 does not close file descriptors associated with temporary files when running a cron job, which allows local users to modify job files and send spam messages by accessing an open file descriptor.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bcron project bcron exec 0.07
bcron project bcron exec 0.06
bcron project bcron exec 0.05
bcron project bcron exec 0.04
bcron project bcron exec
bcron project bcron exec 0.08

Debian Bug report logs - #686650 bcron: CVE-2012-6110: bcron file descriptors not closed Package: bcron; Maintainer for bcron is Dmitry Bogatov <KAction@debianorg>; Source for bcron is src:bcron (PTS, buildd, popcon) Reported by: Anton Khalikov <anton@khalikovru> Date: Tue, 4 Sep 2012 11:00:01 UTC Severity: criti ...

CWE-264 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686650 http://untroubled.org/bcron/NEWS http://seclists.org/oss-sec/2013/q1/102 https://exchange.xforce.ibmcloud.com/vulnerabilities/81383 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=686650 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-6110

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect