CVE-2011-1159

Name of the Vulnerable Software and Affected Versions acpid versions prior to 2.0.9

Description The issue allows local users to cause a denial of service, potentially disrupting the confidentiality, integrity, and availability of protected information. This can be achieved through a crafted application that connects to acpid.socket but does not perform any read system calls, causing the daemon to hang. A local attacker can exploit this situation.

Recommendations For versions prior to 2.0.9, update to version 2.0.9 or later to resolve the issue. As a temporary workaround, consider restricting access to acpid.socket to minimize the risk of exploitation.