6.9 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
5.1%
CentOS Errata and Security Advisory CESA-2009:1642
acpid is a daemon that dispatches ACPI (Advanced Configuration and Power
Interface) events to user-space programs.
It was discovered that acpid could create its log file (β/var/log/acpidβ)
with random permissions on some systems. A local attacker could use this
flaw to escalate their privileges if the log file was created as
world-writable and with the setuid or setgid bit set. (CVE-2009-4033)
Please note that this flaw was due to a Red Hat-specific patch
(acpid-1.0.4-fd.patch) included in the Red Hat Enterprise Linux 5 acpid
package.
Users are advised to upgrade to this updated package, which contains a
backported patch to correct this issue.
Merged security bulletin from advisories:
https://lists.centos.org/pipermail/centos-announce/2009-December/078542.html
https://lists.centos.org/pipermail/centos-announce/2009-December/078543.html
Affected packages:
acpid
Upstream details at:
https://access.redhat.com/errata/RHSA-2009:1642
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
CentOS | 5 | i386 | acpid | <Β 1.0.4-9.el5_4.1 | acpid-1.0.4-9.el5_4.1.i386.rpm |
CentOS | 5 | i386 | acpid | <Β 1.0.4-9.el5_4.1 | acpid-1.0.4-9.el5_4.1.i386.rpm |
CentOS | 5 | x86_64 | acpid | <Β 1.0.4-9.el5_4.1 | acpid-1.0.4-9.el5_4.1.x86_64.rpm |
CentOS | 5 | x86_64 | acpid | <Β 1.0.4-9.el5_4.1 | acpid-1.0.4-9.el5_4.1.x86_64.rpm |