CVE-2012-6097

Published: Apr 9, 2013Modified: Apr 29, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

File descriptor leak in cronie 1.4.8, when running in certain environments, might allow local users to read restricted files, as demonstrated by reading /etc/crontab.

Affected (1)

Products: Fedorahosted: Cronie

Fedorahosted

1 product

Cronie

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Fedorahosted Cronie	Version 1.4.8

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

http://www.mandriva.com/security/advisories?name=MDVSA-2013:033

Source: secalert@redhat.com

https://bugs.mageia.org/show_bug.cgi?id=8652

Source: secalert@redhat.com

https://bugzilla.novell.com/show_bug.cgi?id=786096

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=893661

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDVSA-2013:033

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.mageia.org/show_bug.cgi?id=8652

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.novell.com/show_bug.cgi?id=786096

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugzilla.redhat.com/show_bug.cgi?id=893661

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.