Computer Security
[EN] securityvulns.ru no-pyccku


acpid DoS
updated since 26.05.2009
Published:23.10.2011
Source:
SecurityVulns ID:9936
Type:remote
Threat Level:
5/10
Description:Large number of connections leads to endless loop.
Affected:ACPID : acpid 1.0
 ACPID : acpid 2.0
CVE:CVE-2011-1159 (acpid.c in acpid before 2.0.9 does not properly handle a situation in which a process has connected to acpid.socket but is not reading any data, which allows local users to cause a denial of service (daemon hang) via a crafted application that performs a connect system call but no read system calls.)
 CVE-2009-0798 (ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to cause a denial of service (CPU consumption and connectivity loss) by opening a large number of UNIX sockets without closing them, which triggers an infinite loop.)
Original documentdocumentGENTOO, [ GLSA 200905-06 ] acpid: Denial of Service (26.05.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod