CVE-2011-4073
openswan: use-after-free vulnerability leads to DoS
Severity Score
5.3
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows remote authenticated users to cause a denial of service (pluto IKE daemon crash) via vectors related to the (1) quick_outI1_continue and (2) quick_outI1 functions.
Una vulnerabilidad de uso de memoria previamente liberada en la funcionalidad del manejador auxiliar criptográfico en Openswan versión 2.3.0 hasta 2.6.36, permite a los usuarios autenticados remotos causar una denegación de servicio (bloqueo del demonio pluto IKE) por medio de vectores relacionados con las funciones (1) quick_outI1_continue y (2) quick_outI1.
Multiple vulnerabilities has been discovered and corrected in openswan. The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the in many distributions and the upstream version, this tool has been disabled. The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted R_U_THERE_ACK Dead Peer Detection IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD. Various other issues have also been addressed.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-10-18 CVE Reserved
- 2011-11-17 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
- CWE-416: Use After Free
CAPEC
References (10)
| URL | Tag | Source |
|---|---|---|
| http://www.openswan.org/download/CVE-2011-4073/CVE-2011-4073.txt | X_refsource_confirm | |
| http://www.securityfocus.com/bid/50440 | Vdb Entry | |
| http://www.securitytracker.com/id?1026268 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/46678 | 2019-07-29 | |
| http://secunia.com/advisories/46681 | 2019-07-29 | |
| http://secunia.com/advisories/47342 | 2019-07-29 | |
| http://www.debian.org/security/2011/dsa-2374 | 2019-07-29 | |
| http://www.redhat.com/support/errata/RHSA-2011-1422.html | 2019-07-29 | |
| https://access.redhat.com/security/cve/CVE-2011-4073 | 2011-11-02 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=748961 | 2011-11-02 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.3.0 Search vendor "Xelerance" for product "Openswan" and version "2.3.0" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.3.1 Search vendor "Xelerance" for product "Openswan" and version "2.3.1" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.0 Search vendor "Xelerance" for product "Openswan" and version "2.4.0" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.1 Search vendor "Xelerance" for product "Openswan" and version "2.4.1" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.2 Search vendor "Xelerance" for product "Openswan" and version "2.4.2" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.3 Search vendor "Xelerance" for product "Openswan" and version "2.4.3" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.4 Search vendor "Xelerance" for product "Openswan" and version "2.4.4" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.5 Search vendor "Xelerance" for product "Openswan" and version "2.4.5" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.6 Search vendor "Xelerance" for product "Openswan" and version "2.4.6" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.7 Search vendor "Xelerance" for product "Openswan" and version "2.4.7" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.8 Search vendor "Xelerance" for product "Openswan" and version "2.4.8" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.9 Search vendor "Xelerance" for product "Openswan" and version "2.4.9" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.10 Search vendor "Xelerance" for product "Openswan" and version "2.4.10" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.11 Search vendor "Xelerance" for product "Openswan" and version "2.4.11" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.12 Search vendor "Xelerance" for product "Openswan" and version "2.4.12" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.4.13 Search vendor "Xelerance" for product "Openswan" and version "2.4.13" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.0 Search vendor "Xelerance" for product "Openswan" and version "2.5.0" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.0 Search vendor "Xelerance" for product "Openswan" and version "2.5.0" | sbs4 |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.0 Search vendor "Xelerance" for product "Openswan" and version "2.5.0" | sbs5 |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.01 Search vendor "Xelerance" for product "Openswan" and version "2.5.01" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.02 Search vendor "Xelerance" for product "Openswan" and version "2.5.02" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.03 Search vendor "Xelerance" for product "Openswan" and version "2.5.03" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.04 Search vendor "Xelerance" for product "Openswan" and version "2.5.04" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.05 Search vendor "Xelerance" for product "Openswan" and version "2.5.05" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.06 Search vendor "Xelerance" for product "Openswan" and version "2.5.06" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.07 Search vendor "Xelerance" for product "Openswan" and version "2.5.07" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.08 Search vendor "Xelerance" for product "Openswan" and version "2.5.08" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.09 Search vendor "Xelerance" for product "Openswan" and version "2.5.09" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.10 Search vendor "Xelerance" for product "Openswan" and version "2.5.10" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.11 Search vendor "Xelerance" for product "Openswan" and version "2.5.11" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.12 Search vendor "Xelerance" for product "Openswan" and version "2.5.12" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.13 Search vendor "Xelerance" for product "Openswan" and version "2.5.13" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.14 Search vendor "Xelerance" for product "Openswan" and version "2.5.14" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.15 Search vendor "Xelerance" for product "Openswan" and version "2.5.15" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.16 Search vendor "Xelerance" for product "Openswan" and version "2.5.16" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.17 Search vendor "Xelerance" for product "Openswan" and version "2.5.17" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.5.18 Search vendor "Xelerance" for product "Openswan" and version "2.5.18" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.01 Search vendor "Xelerance" for product "Openswan" and version "2.6.01" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.02 Search vendor "Xelerance" for product "Openswan" and version "2.6.02" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.03 Search vendor "Xelerance" for product "Openswan" and version "2.6.03" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.04 Search vendor "Xelerance" for product "Openswan" and version "2.6.04" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.05 Search vendor "Xelerance" for product "Openswan" and version "2.6.05" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.06 Search vendor "Xelerance" for product "Openswan" and version "2.6.06" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.07 Search vendor "Xelerance" for product "Openswan" and version "2.6.07" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.08 Search vendor "Xelerance" for product "Openswan" and version "2.6.08" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.09 Search vendor "Xelerance" for product "Openswan" and version "2.6.09" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.10 Search vendor "Xelerance" for product "Openswan" and version "2.6.10" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.11 Search vendor "Xelerance" for product "Openswan" and version "2.6.11" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.12 Search vendor "Xelerance" for product "Openswan" and version "2.6.12" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.13 Search vendor "Xelerance" for product "Openswan" and version "2.6.13" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.14 Search vendor "Xelerance" for product "Openswan" and version "2.6.14" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.15 Search vendor "Xelerance" for product "Openswan" and version "2.6.15" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.16 Search vendor "Xelerance" for product "Openswan" and version "2.6.16" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.17 Search vendor "Xelerance" for product "Openswan" and version "2.6.17" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.18 Search vendor "Xelerance" for product "Openswan" and version "2.6.18" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.19 Search vendor "Xelerance" for product "Openswan" and version "2.6.19" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.20 Search vendor "Xelerance" for product "Openswan" and version "2.6.20" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.21 Search vendor "Xelerance" for product "Openswan" and version "2.6.21" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.22 Search vendor "Xelerance" for product "Openswan" and version "2.6.22" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.23 Search vendor "Xelerance" for product "Openswan" and version "2.6.23" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.24 Search vendor "Xelerance" for product "Openswan" and version "2.6.24" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.25 Search vendor "Xelerance" for product "Openswan" and version "2.6.25" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.26 Search vendor "Xelerance" for product "Openswan" and version "2.6.26" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.27 Search vendor "Xelerance" for product "Openswan" and version "2.6.27" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.28 Search vendor "Xelerance" for product "Openswan" and version "2.6.28" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.29 Search vendor "Xelerance" for product "Openswan" and version "2.6.29" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.30 Search vendor "Xelerance" for product "Openswan" and version "2.6.30" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.31 Search vendor "Xelerance" for product "Openswan" and version "2.6.31" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.32 Search vendor "Xelerance" for product "Openswan" and version "2.6.32" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.33 Search vendor "Xelerance" for product "Openswan" and version "2.6.33" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.34 Search vendor "Xelerance" for product "Openswan" and version "2.6.34" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.35 Search vendor "Xelerance" for product "Openswan" and version "2.6.35" | - |
Affected
| ||||||
| Xelerance Search vendor "Xelerance" | Openswan Search vendor "Xelerance" for product "Openswan" | 2.6.36 Search vendor "Xelerance" for product "Openswan" and version "2.6.36" | - |
Affected
| ||||||