CVE-2011-1784

Опубликовано: 20 мая 2011

Источник: nvd

CVSS2: 3.6

EPSS Низкий

Описание

The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the (1) keepalived.pid, (2) checkers.pid, and (3) vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:keepalived:keepalived:*:*:*:*:*:*:*:*

Версия до 1.2.2 (включая)

cpe:2.3:a:keepalived:keepalived:0.2.1:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.2.3:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.2.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.2.7:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.3.5:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.3.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.3.7:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.3.8:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.4.8:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.4.9:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.4.9a:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.3:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.5:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.7:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.8:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.5.9:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.1:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.2:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.3:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.4:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.5:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.7:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.8:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.9:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.6.10:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.7.1:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:0.7.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.0.0:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.0:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.5:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.8:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.9:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.10:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.11:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.12:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.13:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.15:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.16:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.17:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.18:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.19:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.1.20:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.2.0:*:*:*:*:*:*:*

cpe:2.3:a:keepalived:keepalived:1.2.1:*:*:*:*:*:*:*

EPSS

Процентиль: 15%

0.00047

Низкий

3.6 Low

CVSS2

Дефекты

CWE-264

Связанные уязвимости

CVE-2011-1784

ubuntu

больше 14 лет назад

CVE-2011-1784

debian

больше 14 лет назад

The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and e ...

GHSA-xjrv-p75r-gqqr

github

больше 3 лет назад

EPSS

Процентиль: 15%

0.00047

Низкий

3.6 Low

CVSS2

Дефекты

CWE-264