Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0040

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0040
Last Modified 05 Sep 2008 04:23:07
Published 16 Feb 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0040

Summary

APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file.

Vulnerable Systems

Application

  • Apcupsd 3.7.2


References

BID - 2070

XF - apc-apcupsd-dos

BUGTRAQ - 20001206 apcupsd 3.7.2 Denial of Service

MANDRAKE - MDKSA-2000:077


Last Updated: 27 May 2016 10:36:06