APC apcupsd Local Denial of Service Vulnerability
BID:2070
Info
APC apcupsd Local Denial of Service Vulnerability
| Bugtraq ID: | 2070 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Dec 06 2000 12:00AM |
| Updated: | Dec 06 2000 12:00AM |
| Credit: | Reported to bugtraq by Mattias Dartsch <[email protected]> on Wed, 6 Dec 2000 |
| Vulnerable: |
APC apcupsd 3.7.2 |
| Not Vulnerable: |
APC apcupsd 3.8 |
Discussion
APC apcupsd Local Denial of Service Vulnerability
A denial-of-service vulnerability exists in certain versions of APC's UPS daemon, apcupsd.
apcupsd is the Unix daemon driving various popular models of uninterruptible power supply manufactured by American Power Conversion.
It operates under most versions of Linux / Unix.
A key configuration file, /var/run/apcupsd.pid, instructs the daemon's scripts which system processes to shut down when the service is restarted or stopped.
By default, this file is configured world-writeable. A malicious local user could re-write this file with process IDs corresponding to arbitrary components of the affected system. As a result, these processes, and not apcupsd, could be mistakenly terminated, potentially crashing the system.
A denial-of-service vulnerability exists in certain versions of APC's UPS daemon, apcupsd.
apcupsd is the Unix daemon driving various popular models of uninterruptible power supply manufactured by American Power Conversion.
It operates under most versions of Linux / Unix.
A key configuration file, /var/run/apcupsd.pid, instructs the daemon's scripts which system processes to shut down when the service is restarted or stopped.
By default, this file is configured world-writeable. A malicious local user could re-write this file with process IDs corresponding to arbitrary components of the affected system. As a result, these processes, and not apcupsd, could be mistakenly terminated, potentially crashing the system.
Exploit / POC
APC apcupsd Local Denial of Service Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
APC apcupsd Local Denial of Service Vulnerability
Solution:
Solution:
Upgrade to apcupsd Version 3.8.0 .
http://www.sibbald.com/apcupsd/
http://www.oasi.gpa.it/riccardo/linux/apcupsd/
ftp://ftp.oasi.gpa.it/pub/apcupsd/
Solution:
Solution:
Upgrade to apcupsd Version 3.8.0 .
http://www.sibbald.com/apcupsd/
http://www.oasi.gpa.it/riccardo/linux/apcupsd/
ftp://ftp.oasi.gpa.it/pub/apcupsd/
References
APC apcupsd Local Denial of Service Vulnerability
References:
References: