71 matches found
DEBIAN-CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function...
CVE-2003-0099
CVE-2003-0099 affects apcupsd prior to 3.8.6 and prior to 3.10.5 (3.10.x branches). The root cause is vulnerable use of vsprintf, leading to multiple buffer overflows. Consequences documented include possible denial of service and arbitrary code execution; some sources mention remote root access ...
CVE-2003-0098
Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...
CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function...
CVE-2003-0099
Multiple buffer overflows in apcupsd before 3.8.6, and 3.10.x before 3.10.5, may allow attackers to cause a denial of service or execute arbitrary code, related to usage of the vsprintf function...
CVE-2003-0098
Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly via format strings in a request to a slave server...
CVE-2003-0098
CVE-2003-0098 concerns the apcupsd daemon (APC UPS management) with remote root-privilege risk due to buffer/format-string issues in the slave/server information path. Affected versions are apcupsd < 3.8.6 and 3.10.x
CVE-2001-0040
The CVE concerns apcupsd, where during startup the daemon creates /var/run/apcupsd.pid with world-writable permissions (mode 666). This allows a local attacker to overwrite the PID file with arbitrary process IDs, causing legitimate processes to be killed when apcupsd restarts or stops. The Mandr...
APC UPS 3.7.2 - apcupsd Local Denial of Service
APC UPS 3.7.2 - apcupsd Local Denial of Service / Local Denial of Service for any linux box running APCUPSD v3.7.2 APCUPSD has his pid file world writeable, therefore it is possible to let it kill another pid and create a denial of service against any running daemon. when the apcupsd is stopped,...
apcupsd 3.7.2 Denial of Service
Title: apcupsd 3.7.2 Denial of Service Affected Application: apcupsd daemon Affected Versions: 3.7.2 and maybe prior Not affected: 3.8.0 and above Affected Platforms: all Linux / Unix Vulnerability Class: Denial of Service local Author Notified: Yes July 12th 2000 Fix available: Yes included...
Проблема в apcupsd
Создается открытый на запись файл, в который записывается pid процесса. Это позволяет подменить pid, в результате чего при попытке остановить демон будет убит другой процесс...