CVE-2011-4339
ipmitool - insecure pid file
EPSS 0.06%
Description
ipmievd (aka the IPMI event daemon) in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux (RHEL) 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this file.
How to fix CVE-2011-4339
To remediate CVE-2011-4339, upgrade the affected package to a fixed version below.
- Debian/ipmitool—upgrade to 1.8.11-5 or later
- Debian/ipmitool—upgrade to 1.8.11-2+squeeze2 or later
- —upgrade to 1.8.9-2+squeeze1 or later
Is CVE-2011-4339 being exploited?
Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.
Affected packages (3)
- from 0, < 1.8.11-5
- from 0, < 1.8.11-2+squeeze2
- from 0, < 1.8.9-2+squeeze1