Local Privilege Escalation via Symlink Attack in Cronic Before 3

Local Privilege Escalation via Symlink Attack in Cronic Before 3

CVE-2016-3992 · MEDIUM Severity

AV:L/AC:L/AU:N/C:N/I:C/A:N

cronic before 3 allows local users to write to arbitrary files via a symlink attack on a (1) cronic.out.$$, (2) cronic.err.$$, or (3) cronic.trace.$$ file in /tmp.

Learn more about our User Device Pen Test.