Title: Red Hat acpid '/var/log/acpid' Log File Permissions Local Privilege Escalation Vulnerability
Severity: HIGH
Description:
Red Hat Enterprise Linux is an operating system. The 'acpid' daemon is an ACPI (Advanced Configuration and Power Interface) policy daemon for Linux.
The version of 'acpid' distributed with Red Hat Enterprise Linux is prone to a local privilege-escalation vulnerability. Specifically, the '/var/log/acpid' log file may be created with random permissions. This issue stems from an error introduced in a Red Hat-specific patch.
Attackers may exploit this issue to execute arbitrary code with SYSTEM-level privileges, resulting in a complete compromise of the affected computer.
This issue affects the 'acpid' application distributed with Red Hat Enterprise Linux 5.
Affected Products:
- RedHat Enterprise Linux 5 server
- RedHat Enterprise Linux Desktop 5 client
References:
- CVE: CVE-2009-4033
- Red Hat: Red Hat Homepage
- Tomas Hoger: Bug 542926 – CVE-2009-4033 acpid: log file created with random permissions
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
