apcupsd for APC UPS systems contains a flaw that may allow a local denial of service. The problem is that the daemon saves its process ID in a world-writable file, which could allow a malicious user to overwrite the 'apcups.pid' file with an arbitrary process ID to cause the system to crash during restart or shutdown, resulting in a loss of availability for the system.

Upgrade to version 3.8.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

• Security Tracker: 1008774
• CVE ID: 2001-0040 (see also: NVD)
• Bugtraq ID: 2070
• Milw0rm: 251
• Exploit Database: 251
• ISS X-Force ID: 5654
• Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2000-12/0066.html
• Other Advisory URL: http://www.linux-mandrake.com/en/security/MDKSA-2000-077.php3
• Vendor URL: http://www.sibbald.com/apcupsd/

• Mattias Dartsch - matzejoonix.de -