Vulnerability Name:

CVE-2005-1038 (CCN-20037)

Assigned:2005-04-06
Published:2005-04-06
Updated:2017-10-11
Summary:crontab in Vixie cron 4.1, when running with the -e option, allows local users to read the cron files of other users by changing the file being edited to a symlink.
Note: there is insufficient information to know whether this is a duplicate of CVE-2001-0235.
CVSS v3 Severity:4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
1.6 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: SGI
Type: UNKNOWN
20060401-01-U

Source: CCN
Type: SGI Security Advisory 20060401-01-U
SGI Advanced Linux Environment 3 Security Update #56

Source: MITRE
Type: CNA
CVE-2005-1038

Source: CCN
Type: RHSA-2005-361
vixie-cron security update

Source: CCN
Type: RHSA-2006-0117
vixie-cron security update

Source: SECUNIA
Type: UNKNOWN
19532

Source: CCN
Type: SA20666
Avaya Products vixie-cron Exposure of Arbitrary Cron Files

Source: SECUNIA
Type: UNKNOWN
20666

Source: SECUNIA
Type: UNKNOWN
24995

Source: CONFIRM
Type: UNKNOWN
http://support.avaya.com/elmodocs2/security/ASA-2006-118.htm

Source: CCN
Type: ASA-2006-118
vixie-cron security update (RHSA-2006-0117)

Source: SUSE
Type: UNKNOWN
SUSE-SR:2007:007

Source: REDHAT
Type: UNKNOWN
RHSA-2005:361

Source: REDHAT
Type: UNKNOWN
RHSA-2006:0117

Source: BUGTRAQ
Type: Exploit, Vendor Advisory
20050406 crontab from vixie-cron allows read other users crontabs

Source: BID
Type: Patch
13024

Source: CCN
Type: BID-13024
Vixie Cron Crontab File Disclosure Vulnerability

Source: XF
Type: UNKNOWN
vixie-cron-information-disclosure(20037)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:11104

Source: SUSE
Type: SUSE-SR:2007:007
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:paul_vixie:vixie_cron:4.1:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:redhat:enterprise_linux:4.0:*:advanced_server:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4.0:*:enterprise_server:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4.0:*:workstation:*:*:*:*:*

    • Configuration RedHat 1:
  • cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora_core:4:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*
  • OR cpe:/o:fedoraproject:fedora_core:3:*:*:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::as:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::desktop:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::es:*:*:*:*:*
  • OR cpe:/o:redhat:enterprise_linux:4::ws:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20051038
    V
    		CVE-2005-1038
    2015-11-16
    oval:org.mitre.oval:def:11104
    V
    		crontab in Vixie cron 4.1, when running with the -e option, allows local users to read the cron files of other users by changing the file being edited to a symlink. NOTE: there is insufficient information to know whether this is a duplicate of CVE-2001-0235.
    2013-04-29
    oval:com.redhat.rhsa:def:20060117
    P
    		RHSA-2006:0117: vixie-cron security update (Low)
    2008-03-20
    oval:com.redhat.rhsa:def:20050361
    P
    		RHSA-2005:361: vixie-cron security update (Low)
    2005-10-05
    BACK
    paul_vixie vixie cron 4.1
    redhat enterprise linux 4.0
    redhat enterprise linux 4.0
    redhat enterprise linux 4.0
    redhat enterprise linux 3
    redhat enterprise linux 3
    redhat enterprise linux 3
    fedoraproject fedora core 4
    redhat enterprise linux 3
    fedoraproject fedora core 3
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4
    redhat enterprise linux 4