CVE-2011-1159

Published Oct 5, 2011

Last updated 13 years ago

Overview

Description: acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has connected to acpid.socket but is not reading any data, which allows local users to cause a denial of service (daemon hang) via a crafted application that performs a connect system call but no read system calls.
Source: secalert@redhat.com
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 2.1
Impact score: 2.9
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-20

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF501BE4-AA18-407F-8873-ABFAC8B48314",
            "versionEndIncluding": "2.0.8"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:1.0.8:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82B4C09A-27B5-40C3-BC29-1AF719D15866"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:1.0.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DE4A0A4D-A705-42D0-B6ED-839AD1E1654D"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "31FBDC0D-23D1-4D6A-A04B-42F3044F67D4"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27515319-B40F-46F6-9850-AF56D0DF46E2"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4A217BEA-9E4C-4CEF-8AFF-46A01AE5ACA0"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B26E4400-07F3-40F4-8E40-91A9A38BCD9F"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44949FCD-B2F0-41EE-9714-161740CC734F"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC73131B-B96A-43EA-9854-48D71582FFC3"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A0E5388D-E751-4A75-935F-7B2056F24576"
          },
          {
            "criteria": "cpe:2.3:a:tedfelix:acpid:2.06:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "672CB3CB-4FBD-4B9F-8EBE-2A8D262D19D0"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References