Lucene search
K

194 matches found

CVE
CVE
added 2012/08/29 10:0 p.m.78 views

CVE-2011-2777

CVE-2011-2777 affects acpid/acpid2 (2.0.16 and older). The flaw lies in how powerbtn.sh uses the pidof program, which can be exploited by a local attacker to gain elevated privileges by launching a program named kded4 with a crafted DBUS_SESSION_BUS_ADDRESS. Impact is local privilege escalation. ...

4.4CVSS6.2AI score0.00612EPSS
Exploits5References1Affected Software1
CVE
CVE
added 2012/08/29 10:0 p.m.78 views

CVE-2011-4578

CVE-2011-4578 affects the acpid (aka acpid2) package: the file event.c executes event-handler scripts without a proper umask prior to version 2.0.11. This may allow a local attacker to either (1) write into directories created by a script or (2) read files created by a script via standard filesys...

4.6CVSS6.2AI score0.00394EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2012/08/29 10:0 p.m.33 views

CVE-2011-4578

event.c in acpid aka acpid2 before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to 1 perform write operations within directories created by a script, or 2 read files created by a script, via standard filesystem system...

6AI score0.00394EPSS
Exploits0References5
Cvelist
Cvelist
added 2012/08/29 10:0 p.m.39 views

CVE-2011-2777

samples/powerbtn/powerbtn.sh in acpid aka acpid2 2.0.16 and earlier uses the pidof program incorrectly, which allows local users to gain privileges by running a program with the name kded4 and a DBUSSESSIONBUSADDRESS environment variable containing commands...

6.1AI score0.00612EPSS
Exploits5References1
Debian CVE
Debian CVE
added 2012/08/29 10:0 p.m.64 views

CVE-2011-2777

samples/powerbtn/powerbtn.sh in acpid aka acpid2 2.0.16 and earlier uses the pidof program incorrectly, which allows local users to gain privileges by running a program with the name kded4 and a DBUSSESSIONBUSADDRESS environment variable containing commands...

4.4CVSS6.2AI score0.00612EPSS
Exploits5
Debian CVE
Debian CVE
added 2012/08/29 10:0 p.m.47 views

CVE-2011-4578

event.c in acpid aka acpid2 before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to 1 perform write operations within directories created by a script, or 2 read files created by a script, via standard filesystem system...

4.6CVSS6.1AI score0.00394EPSS
Exploits0
OpenVAS
OpenVAS
added 2012/08/21 12:0 a.m.33 views

Mandriva Update for acpid MDVSA-2012:137 (acpid)

Check for the Version of acpid OpenVAS Vulnerability Test Mandriva Update for acpid MDVSA-2012:137 acpid Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

4.6CVSS0.1AI score0.00612EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2012/08/21 12:0 a.m.28 views

Mandriva Update for acpid MDVSA-2012:137 (acpid)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

4.6CVSS5.2AI score0.00612EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2012/08/03 12:0 a.m.24 views

Mandriva Update for acpid MDVSA-2012:086 (acpid)

Check for the Version of acpid OpenVAS Vulnerability Test Mandriva Update for acpid MDVSA-2012:086 acpid Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

2.1CVSS6.4AI score0.01095EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2012/08/03 12:0 a.m.29 views

Mandriva Update for acpid MDVSA-2012:086 (acpid)

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

2.1CVSS5.2AI score0.01095EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.22 views

Scientific Linux Security Update : acpid on SL5.x i386/x86_64

CVE-2009-4033 acpid: log file created with random permissions It was discovered that acpid could create its log file '/var/log/acpid' with random permissions on some systems. A local attacker could use this flaw to escalate their privileges if the log file was created as world-writable and with t...

6.9CVSS5.4AI score0.00309EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.32 views

Scientific Linux Security Update : acpid on SL3.x, SL4.x, SL5.x i386/x86_64

Anthony de Almeida Lopes of Outpost24 AB reported a denial of service flaw in the acpid daemon's error handling. If an attacker could exhaust the sockets open to acpid, the daemon would enter an infinite loop, consuming most CPU resources and preventing acpid from communicating with legitimate...

5CVSS5.4AI score0.02312EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2012/06/01 12:0 a.m.27 views

Mandriva Linux Security Advisory : acpid (MDVSA-2012:086)

A vulnerability has been discovered and corrected in acpid : acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has connected to acpid.socket but is not reading any data, which allows local users to cause a denial of service daemon hang via a crafted application...

2.1CVSS5.2AI score0.01095EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.37 views

Debian Security Advisory DSA 2362-1 (acpid)

The remote host is missing an update to acpid announced via advisory DSA 2362-1. OpenVAS Vulnerability Test $Id: deb23621.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2362-1 acpid Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

4.6CVSS6.3AI score0.01095EPSS
Exploits6
OpenVAS
OpenVAS
added 2012/02/11 12:0 a.m.33 views

Debian: Security Advisory (DSA-2362-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.6CVSS6.4AI score0.01095EPSS
Exploits6References3
Tenable Nessus
Tenable Nessus
added 2012/01/12 12:0 a.m.85 views

Debian DSA-2362-1 : acpid - several vulnerabilities

Multiple vulnerabilities were found in the ACPI Daemon, the Advanced Configuration and Power Interface event daemon : - CVE-2011-1159 Vasiliy Kulikov of OpenWall discovered that the socket handling is vulnerable to denial of service. - CVE-2011-2777 Oliver-Tobias Ripka discovered that incorrect...

4.6CVSS5.3AI score0.01095EPSS
Exploits6References8
securityvulns
securityvulns
added 2011/12/12 12:0 a.m.76 views

[USN-1296-1] acpid vulnerabilities

========================================================================== Ubuntu Security Notice USN-1296-1 December 08, 2011 acpid vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

4.6CVSS1AI score0.00612EPSS
Exploits5
Debian
Debian
added 2011/12/10 10:15 a.m.38 views

[SECURITY] [DSA 2362-1] acpid security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2362-1 [email protected] http://www.debian.org/security/ Moritz Muehlenhoff December 10, 2011 http://www.debian.org/security/faq -...

4.6CVSS5.9AI score0.01095EPSS
Exploits6
Packet Storm
Packet Storm
added 2011/12/10 12:0 a.m.106 views

Acpid Privilege Boundary Crossing

Exploit Title: Acpid Privilege Boundary Crossing Vulnerability Google Dork: Date: 23-11-2011 Author: otr Software Link: https://launchpad.net/ubuntu/+source/acpid Version: 1:2.0.10-1ubuntu2 Tested on: Ubuntu 11.10, Ubuntu 11.04 CVE : CVE-2011-2777 -- Safeguard this letter, it may be an IMPORTANT...

4.4CVSS0.2AI score0.00612EPSS
Exploits5
exploitpack
exploitpack
added 2011/12/10 12:0 a.m.49 views

Acpid 1:2.0.10-1ubuntu2 (Ubuntu 11.0411.10) - Boundary Crossing Privilege Escalation

Acpid 1:2.0.10-1ubuntu2 Ubuntu 11.0411.10 - Boundary Crossing Privilege Escalation Exploit Title: Acpid Privilege Boundary Crossing Vulnerability Google Dork: Date: 23-11-2011 Author: otr Software Link: https://launchpad.net/ubuntu/+source/acpid Version: 1:2.0.10-1ubuntu2 Tested on: Ubuntu 11.10,...

4.4CVSS0.4AI score0.00612EPSS
Exploits5
Rows per page
Query Builder