CVE-2011-4339 : ipmievd (aka the IPMI event daemon) in OpenIPMI, as used in the ipmitool package

ipmievd (aka the IPMI event daemon) in OpenIPMI, as used in the ipmitool package 1.8.11 in Red Hat Enterprise Linux (RHEL) 6, Debian GNU/Linux, Fedora 16, and other products uses 0666 permissions for its ipmievd.pid PID file, which allows local users to kill arbitrary processes by writing to this file.

Published 2011-12-15 03:57:34

Updated 2022-02-03 19:59:35

Source Red Hat, Inc.

View at NVD, CVE.org

Products affected by CVE-2011-4339

Ipmitool Project » Ipmitool » Version: 1.8.11
cpe:2.3:a:ipmitool_project:ipmitool:1.8.11:*:*:*:*:*:*:*
Matching versions
When used together with: Redhat » Enterprise Linux » Version: 6.0

Exploit prediction scoring system (EPSS) score for CVE-2011-4339

EPSS FAQ

0.05%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 18 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2011-4339

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
3.6	LOW	AV:L/AC:L/Au:N/C:N/I:P/A:P	3.9	4.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2011-4339

CWE-732 Incorrect Permission Assignment for Critical Resource

The product specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-4339

http://www.securityfocus.com/bid/51036

OpenIPMI 'ipmievd' Daemon PID Files Insecure File Permissions Vulnerability
Third Party Advisory;VDB Entry
http://www.xerox.com/download/security/security-bulletin/16287-4d6b7b0c81f7b/cert_XRX13-003_v1.0.pdf

Third Party Advisory

CVEs referencing this url
http://www.debian.org/security/2011/dsa-2376

Debian -- Security Information -- DSA-2376-2 ipmitool
Third Party Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2011:196

mandriva.com
Broken Link
http://www.redhat.com/support/errata/RHSA-2011-1814.html

Support
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=742837

742837 – (CVE-2011-4339) CVE-2011-4339 OpenIPMI: IPMI event daemon creates PID file with world writeable permissions
Issue Tracking;Patch
http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071575.html

[SECURITY] Fedora 15 Update: ipmitool-1.8.11-7.fc15
Third Party Advisory
http://rhn.redhat.com/errata/RHSA-2013-0123.html

RHSA-2013:0123 - Security Advisory - Red Hat Customer Portal
Third Party Advisory
http://openwall.com/lists/oss-security/2011/12/13/1

oss-security - OpenIPMI: IPMI event daemon creates PID file with world writeable permissions
Mailing List;Third Party Advisory
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Oracle VM Server for x86 Bulletin - July 2016
Third Party Advisory

CVEs referencing this url
https://exchange.xforce.ibmcloud.com/vulnerabilities/71763

IMPItool PID denial of service CVE-2011-4339 Vulnerability Report
Third Party Advisory;VDB Entry
http://lists.fedoraproject.org/pipermail/package-announce/2012-January/071580.html

[SECURITY] Fedora 16 Update: ipmitool-1.8.11-8.fc16
Third Party Advisory

Jump to

Vulnerability Details : CVE-2011-4339

Products affected by CVE-2011-4339

Exploit prediction scoring system (EPSS) score for CVE-2011-4339

CVSS scores for CVE-2011-4339

CWE ids for CVE-2011-4339

References for CVE-2011-4339