Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2011-4339HistoryDec 15, 2011 - 3:57 a.m.
CVE-2011-4339
2011-12-1503:57:00
Debian Security Bug Tracker
security-tracker.debian.org
4
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
9.3%
ipmievd (aka the IPMI event daemon) in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux (RHEL) 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | ipmitool | < 1.8.11-5 | ipmitool_1.8.11-5_all.deb |
| Debian | 11 | all | ipmitool | < 1.8.11-5 | ipmitool_1.8.11-5_all.deb |
| Debian | 10 | all | ipmitool | < 1.8.11-5 | ipmitool_1.8.11-5_all.deb |
| Debian | 999 | all | ipmitool | < 1.8.11-5 | ipmitool_1.8.11-5_all.deb |
| Debian | 13 | all | ipmitool | < 1.8.11-5 | ipmitool_1.8.11-5_all.deb |
Related
oraclelinux
oraclelinux
OpenIPMI security, bug fix, and enhancement update
2013-01-11 00:00:00
ipmitool security update
2011-12-16 00:00:00
openvas
openvas
Debian Security Advisory DSA 2376-1 (ipmitool)
2012-02-11 00:00:00
RedHat Update for ipmitool RHSA-2011:1814-01
2012-07-09 00:00:00
Oracle: Security Advisory (ELSA-2011-1814)
2015-10-06 00:00:00
redhat
redhat
(RHSA-2013:0123) Low: OpenIPMI security, bug fix, and enhancement update
2013-01-08 00:00:00
(RHSA-2011:1814) Moderate: ipmitool security update
2011-12-13 00:00:00
(RHSA-2011:1850) Important: rhev-hypervisor6 security and bug fix update
2011-12-22 00:00:00
osv
osv
ipmitool - insecure pid file
2011-12-30 00:00:00
ipmitool - insecure pid file
2011-12-30 00:00:00
nessus
nessus
Scientific Linux Security Update : ipmitool on SL6.x i386/x86_64
2012-08-01 00:00:00
Fedora 15 : ipmitool-1.8.11-7.fc15 (2011-17071)
2012-01-03 00:00:00
CentOS 6 : ipmitool (CESA-2011:1814)
2011-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: ipmitool-1.8.11-8.fc16
2012-01-02 21:56:34
[SECURITY] Fedora 15 Update: ipmitool-1.8.11-7.fc15
2012-01-02 21:56:00
ubuntucve
ubuntucve
CVE-2011-4339
2011-12-15 00:00:00
centos
centos
OpenIPMI security update
2013-01-09 20:22:45
ipmitool security update
2011-12-22 15:45:57
securityvulns
securityvulns
ipmitool weak permissions
2012-01-09 00:00:00
[SECURITY] [DSA 2376-2] ipmitool security update
2012-01-09 00:00:00
prion
prion
Code injection
2011-12-15 03:57:00
cve
cve
CVE-2011-4339
2011-12-15 03:57:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:52:40
debian
debian
[SECURITY] [DSA 2376-1] ipmitool security update
2011-12-30 07:26:23
[SECURITY] [DSA 2376-2] ipmitool security update
2011-12-31 12:21:17
3.6 Low
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:N/I:P/A:P
0.0004 Low
EPSS
Percentile
9.3%
Related for DEBIANCVE:CVE-2011-4339