CVE-2011-2147

Severity CVSS v4.0:
Pending analysis
Type:
CWE-264 Permissions, Privileges, and Access Control
Publication date:
20/05/2011
Last modified:
11/04/2025

Description

Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec starter, and (2) /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writing arbitrary data to a file, as demonstrated by files with 0666 permissions, a different vulnerability than CVE-2011-1784.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:openswan:openswan:2.2.0:*:*:*:*:*:*:*
cpe:2.3:a:openswan:openswan:2.2.1:*:*:*:*:*:*:*