Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.9
CVE-2009-4033
- EPSS 0.04%
- Veröffentlicht 08.12.2009 19:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
A certain Red Hat patch for acpid 1.0.4 effectively triggers a call to the open function with insufficient arguments, which might allow local users to leverage weak permissions on /var/log/acpid, and obtain sensitive information by reading this file,...
6.9
CVE-2009-4235
- EPSS 0.04%
- Veröffentlicht 08.12.2009 19:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
acpid 1.0.4 sets an unrestrictive umask, which might allow local users to leverage weak permissions on /var/log/acpid, and obtain sensitive information by reading this file or cause a denial of service by overwriting this file, a different vulnerabil...
- EPSS 8.8%
- Veröffentlicht 24.04.2009 15:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to cause a denial of service (CPU consumption and connectivity loss) by opening a large number of UNIX sockets without closing them, which triggers an infinite loop.
1