CVE-2001-0040

Published: Feb 16, 2001Modified: Apr 16, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

APC UPS daemon, apcupsd, saves its process ID in a world-writable file, which allows local users to kill an arbitrary process by specifying the target process ID in the apcupsd.pid file.

Affected (1)

Products: Apc: Apcupsd

Apc

1 product

Apcupsd

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apc Apcupsd	Version 3.7.2

References (8)

http://archives.neohapsis.com/archives/bugtraq/2000-12/0066.html

Source: cve@mitre.org

ExploitVendor Advisory

http://www.linux-mandrake.com/en/security/MDKSA-2000-077.php3

Source: cve@mitre.org

http://www.securityfocus.com/bid/2070

Source: cve@mitre.org

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5654

Source: cve@mitre.org

http://archives.neohapsis.com/archives/bugtraq/2000-12/0066.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

http://www.linux-mandrake.com/en/security/MDKSA-2000-077.php3

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/2070

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/5654

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.