CVE-2011-4578
Published Aug 29, 2012
Last updated 12 years ago
Overview
- Description
- event.c in acpid (aka acpid2) before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to (1) perform write operations within directories created by a script, or (2) read files created by a script, via standard filesystem system calls.
- Source
- secalert@redhat.com
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.6
- Impact score
- 6.4
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "785CA642-807B-40B2-B9A9-89855A50B396",
"versionEndIncluding": "2.0.10"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AFE554DE-7900-4BC3-837F-D7A26B88A90E"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E7C462B8-7405-4196-B55C-2A9BBFA98BD3"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE516D6A-FEAA-421B-B807-7046EEA09BD3"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8CACA317-8EC6-4918-B001-40A7FD43B585"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CF66C21C-7BA1-4BE5-A722-28B15FCFCD7A"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9486F5C6-0EB6-430A-BDD3-BDBADB833700"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4AB44BB8-BEA7-4BFD-9431-DED2FB7C011C"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FCE3E44B-5CF7-4E0C-8A01-CD33BF507515"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81AF4DF4-7011-4AB1-B9B0-BAF176D8AE54"
},
{
"criteria": "cpe:2.3:a:tedfelix:acpid2:2.0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BEAA756E-06BA-49E9-99DC-6773CB10C210"
}
],
"operator": "OR"
}
]
}
]