Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-4235
HistoryDec 08, 2009 - 12:00 a.m.

CVE-2009-4235

2009-12-0800:00:00
ubuntu.com
ubuntu.com
3

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON

acpid 1.0.4 sets an unrestrictive umask, which might allow local users to
leverage weak permissions on /var/log/acpid, and obtain sensitive
information by reading this file or cause a denial of service by
overwriting this file, a different vulnerability than CVE-2009-4033.

Notes

Author Note
kees per Debian, only logs to syslog.

Related

openvas 11
prion 2
debiancve 2
cve 2
nessus 7
seebug 1
redhat 2
centos 1
veracode 1
securityvulns 2
ubuntucve 1
oraclelinux 1
debian 1
osv 1
openvas
openvas
Mandriva Security Advisory MDVSA-2009:342 (acpid)
2009-12-30 00:00:00
Mandriva Security Advisory MDVSA-2009:342 (acpid)
2009-12-30 00:00:00
RedHat Security Advisory RHSA-2009:1642
2009-12-10 00:00:00
prion
prion
Design/Logic Flaw
2009-12-08 19:30:00
Open redirect
2009-12-08 19:30:00
debiancve
debiancve
CVE-2009-4235
2009-12-08 19:30:00
CVE-2009-4033
2009-12-08 19:30:00
cve
cve
CVE-2009-4235
2009-12-08 19:30:00
CVE-2009-4033
2009-12-08 19:30:00
nessus
nessus
Oracle Linux 5 : acpid (ELSA-2009-1642)
2013-07-12 00:00:00
Mandriva Linux Security Advisory : acpid (MDVSA-2009:343)
2009-12-28 00:00:00
RHEL 5 : acpid (RHSA-2009:1642)
2009-12-08 00:00:00
seebug
seebug
Red Hat acpid '/var/log/acpid'ζ—₯εΏ—ζ–‡δ»Άζƒι™ζœ¬εœ°η‰Ήζƒζε‡ζΌζ΄ž
2009-12-15 00:00:00
redhat
redhat
(RHSA-2009:1642) Important: acpid security update
2009-12-07 00:00:00
(RHSA-2009:1692) Important: rhev-hypervisor security and bug fix update
2009-12-23 00:00:00
centos
centos
acpid security update
2009-12-18 01:36:56
veracode
veracode
Privilege Escalation
2020-04-10 00:40:27
securityvulns
securityvulns
acpid weak file permission
2009-12-21 00:00:00
[SECURITY] [DSA 1960-1] New acpid packages fix weak file permissions
2009-12-21 00:00:00
ubuntucve
ubuntucve
CVE-2009-4033
2009-12-08 00:00:00
oraclelinux
oraclelinux
acpid security update
2009-12-07 00:00:00
debian
debian
[SECURITY] [DSA 1960-1] New acpid packages fix weak file permissions
2009-12-19 19:52:46
osv
osv
acpid - weak file permissions
2009-12-19 00:00:00

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for UB:CVE-2009-4235
openvas11prion2debiancve2cve2nessus7seebug1redhat2centos1veracode1securityvulns2ubuntucve1oraclelinux1debian1osv1