CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 2CVE-2000-1096 – vixie-cron - Local Privilege Escalation
https://notcve.org/view.php?id=CVE-2000-1096
crontab by Paul Vixie uses predictable file names for a temporary file and does not properly ensure that the file is owned by the user executing the crontab -e command, which allows local users with write access to the crontab spool directory to execute arbitrary commands by creating world-writeable temporary files and modifying them while the victim is editing the file. • https://www.exploit-db.com/exploits/203 http://archives.neohapsis.com/archives/bugtraq/2000-11/0237.html http://www.securityfocus.com/bid/1960 https://exchange.xforce.ibmcloud.com/vulnerabilities/5543 •
CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 0CVE-1999-0872
https://notcve.org/view.php?id=CVE-1999-0872
Buffer overflow in Vixie cron allows local users to gain root access via a long MAILTO environment variable in a crontab file. • http://www.securityfocus.com/bid/611 http://www.securityfocus.com/bid/759 •
CVSS: 7.2EPSS: 0%CPEs: 11EXPL: 1CVE-1999-0769 – Caldera OpenLinux 2.2 / Debian 2.1/2.2 / RedHat 6.0 - Vixie Cron MAILTO Sendmail
https://notcve.org/view.php?id=CVE-1999-0769
Vixie Cron on Linux systems allows local users to set parameters of sendmail commands via the MAILTO environmental variable. • https://www.exploit-db.com/exploits/19474 http://www.securityfocus.com/bid/611 •
CVSS: 7.2EPSS: 0%CPEs: 5EXPL: 0CVE-1999-0297
https://notcve.org/view.php?id=CVE-1999-0297
Buffer overflow in Vixie Cron library up to version 3.0 allows local users to obtain root access via a long environmental variable. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0297 •