APC apcupsd Local DoS

2000-12-06T12:07:11
ID OSVDB:1683
Type osvdb
Reporter Mattias Dartsch(matze@joonix.de)
Modified 2000-12-06T12:07:11

Description

Vulnerability Description

apcupsd for APC UPS systems contains a flaw that may allow a local denial of service. The problem is that the daemon saves its process ID in a world-writable file, which could allow a malicious user to overwrite the 'apcups.pid' file with an arbitrary process ID to cause the system to crash during restart or shutdown, resulting in a loss of availability for the system.

Solution Description

Upgrade to version 3.8.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

apcupsd for APC UPS systems contains a flaw that may allow a local denial of service. The problem is that the daemon saves its process ID in a world-writable file, which could allow a malicious user to overwrite the 'apcups.pid' file with an arbitrary process ID to cause the system to crash during restart or shutdown, resulting in a loss of availability for the system.

References:

Vendor URL: http://www.sibbald.com/apcupsd/ Security Tracker: 1008774 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-12/0066.html ISS X-Force ID: 5654 CVE-2001-0040 Bugtraq ID: 2070