CVE-2004-1031

Name: CVE-2004-1031
Creator: NVD / NIST
Published: 2005-03-01T05:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.37%

Last modified Jun 16, 2026

CVE-2004-1031 is a vulnerability of currently unknown severity. fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.. EPSS estimates a 0.37% chance of exploitation in the next 30 days.

Description

fcronsighup in Fcron 2.0.1, 2.9.4, and possibly earlier versions allows local users to bypass access restrictions and load an arbitrary configuration file by starting an suid process and pointing the fcronsighup configuration file to a /proc entry that is owned by root but modifiable by the user, such as /proc/self/cmdline or /proc/self/environ.

Metrics

EPSS Probability

0.37%

28.7th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions
Thibault Godouet	Fcron	2.0.1
Thibault Godouet	Fcron	2.9.4
Gentoo	Linux	All versions

References

Timeline

Published: Mar 1, 2005
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2004-1031?

How severe is CVE-2004-1031?

Severity scoring for CVE-2004-1031 is pending analysis. The EPSS model estimates a 0.37% probability of exploitation in the next 30 days.

How do I fix CVE-2004-1031?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2004-1031?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST