CVE

Id
52490  
CVE No.
CVE-2011-4578  
Status
Candidate  
Description
event.c in acpid (aka acpid2) before 2.0.11 does not have an appropriate umask setting during execution of event-handler scripts, which might allow local users to (1) perform write operations within directories created by a script, or (2) read files created by a script, via standard filesystem system calls.  
Phase
Assigned (20111129)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
559078 52490 CVE-2011-4578 MLIST:[oss-security] 20111206 Re: CVE request: acpid  View
559079 52490 CVE-2011-4578 URL:http://www.openwall.com/lists/oss-security/2011/12/06/3  View
559080 52490 CVE-2011-4578 CONFIRM:http://sourceforge.net/u/tedfelix/acpid2/ci/02d0bf29207f17996936ab652717855b15873901/tree/Changelog?force=True  View
559081 52490 CVE-2011-4578 CONFIRM:https://bugs.launchpad.net/ubuntu/+source/acpid/+bug/893821  View
559082 52490 CVE-2011-4578 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=760984  View
559083 52490 CVE-2011-4578 MANDRIVA:MDVSA-2012:138  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
34849 JVNDB-2011-005091 Moodle における脆弱性 Moodle は、(1) 無効なサービスおよび (2) 権限を持たないユーザに紐付いた Web サービスのトークンを表示するため、不特定の影響を受ける脆弱性が存在します。 CVE-2011-4583 52490 6.5 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-005091.html  View