CVE-2011-4578 in acpid2información

Resumen

por MITRE

event.c in acpid (aka acpid2) before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to (1) perform write operations within directories created by a script, or (2) read files created by a script, via standard filesystem system calls.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservar

2011-11-29

Divulgación

2012-08-29

Moderación

aceptado

Artículo

VDB-61939

CPE

listo

CWE

CWE-264 (confirmado)

CVSS

4.6 (NVD)

EPSS

0.00394

KEV

Actividades

muy bajo

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-4578
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-4578
CVE Details	https://www.cvedetails.com/cve/CVE-2011-4578/

◂ Anterior Visión De Conjunto Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!