What is CVE-2001-0559?

CVE-2001-0559 is a vulnerability in Paul_vixie Vixie_cron. Published 2001-08-14.

Is CVE-2001-0559 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Paul_vixie Vixie_cron

CVE-2001-0559

crontab in Vixie cron 3.0.1 and earlier does not properly drop privileges after the failed parsing of a modification operation, which could allow a local attacker to gain additional privileges when an editor is called to correct the error.

EPSS: 0.011 (61.4th percentile) — read the EPSS interpretation.

Affected products

Paul_vixie Vixie_cron
N/a — versions n/a

Public proof-of-concept exploits

c-skills/CVEs

References

cve@mitre.org (vendor-advisory, Patch, x_refsource_MANDRAKE, Vendor Advisory)
cve@mitre.org (vendor-advisory, x_refsource_SUSE)
cve@mitre.org (Vendor Advisory, mailing-list, Exploit, x_refsource_BUGTRAQ, Patch)
cve@mitre.org (vendor-advisory, x_refsource_DEBIAN, Vendor Advisory)
cve@mitre.org (Exploit, Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
cve@mitre.org (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2001-0559?: CVE-2001-0559 is a vulnerability in Paul_vixie Vixie_cron. Published 2001-08-14.
Is CVE-2001-0559 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.