[Subject Prev][Subject Next][Thread Prev][Thread Next][Subject Index][Thread Index]

Cron vulnerable

Vixie Cron on many distributions is vulnerable to a local root
compromise attack.  Debian is definitely vulnerable, RedHat is not (to
this exploit, at least).  Please check if /var/spool/cron is
world-readable or not.  If it is, please chmod it to 700 to prevent
this exploit.


-- Raju