CVE-2010-0424 : The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron

The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory.

Published 2010-02-25 19:30:00

Updated 2025-04-11 00:51:22

Source Red Hat, Inc.

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2010-0424

Paul Vixie » Vixie Cron
cpe:2.3:a:paul_vixie:vixie_cron:*:*:*:*:*:*:*:*
Matching versions
Fedorahosted » Cronie
Versions up to, including, (<=) 1.4.3
cpe:2.3:a:fedorahosted:cronie:*:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2010-0424

EPSS FAQ

0.04%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 10 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2010-0424

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.3	LOW	AV:L/AC:M/Au:N/C:N/I:P/A:P	3.4	4.9	NIST
Access Vector: Local Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2010-0424

CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2010-0424

Red Hat 2010-02-26

Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2010-0424 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.

References for CVE-2010-0424

http://www.securityfocus.com/bid/38391

cronie 'crontab' Symbolic Link Local Privilege Escalation Vulnerability
http://git.fedorahosted.org/git/cronie.git?p=cronie.git%3Ba=commit%3Bh=9e4a8fa5f9171fb724981f53879c9b20264aeb61

Infrastructure/Fedorahosted-retirement - Fedora Project Wiki
http://secunia.com/advisories/48104

Sign in
http://lists.fedoraproject.org/pipermail/package-announce/2010-February/035762.html

[SECURITY] Fedora 12 Update: cronie-1.4.3-4.fc12
http://secunia.com/advisories/38700

Sign in
Vendor Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=565809

565809 – (CVE-2010-0424) CVE-2010-0424 vixie-cron, cronie: Race condition by setting timestamp of user's crontab file, when editing the file
http://secunia.com/advisories/38741

Sign in
Vendor Advisory