Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
openswan openswan 2.2 vulnerabilities and exploits
(subscribe to this query)
3.6
CVSSv2
CVE-2011-2147
Openswan 2.2.x does not properly restrict permissions for (1) /var/run/starter.pid, related to starter.c in the IPsec starter, and (2) /var/lock/subsys/ipsec, which allows local users to kill arbitrary processes by writing a PID to a file, or possibly bypass disk quotas by writin...
Openswan Openswan 2.2.0
Openswan Openswan 2.2.1
4.4
CVSSv2
CVE-2008-4190
The IPSEC livetest tool in Openswan 2.4.12 and previous versions, and 2.6.x up to and including 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: i...
Openswan Openswan 1.0.9
Openswan Openswan 2.1.1
Xelerance Openswan 2.4.0
Xelerance Openswan 2.4.2
Xelerance Openswan 2.3.1
Xelerance Openswan 2.6.04
Xelerance Openswan 2.6.05
Xelerance Openswan 2.6.12
Xelerance Openswan 2.6.13
Openswan Openswan 2.2
Openswan Openswan 2.3
Openswan Openswan 1.0.4
Xelerance Openswan 2.6.03
Xelerance Openswan 2.6.10
Xelerance Openswan 2.6.11
Openswan Openswan 2.1.5
Openswan Openswan 2.1.6
Openswan Openswan 1.0.6
Openswan Openswan 1.0.5
Xelerance Openswan 2.6.08
Xelerance Openswan 2.6.09
Xelerance Openswan 2.6.16
1 EDB exploit
7.8
CVSSv2
CVE-2005-3671
The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) prior to 2.4.4, and freeswan in SUSE LINUX 9.1 prior to 2.04_1.5.4-1.23, allow remote malicious users to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length,...
Openswan Openswan 2.2
Xelerance Openswan 2.4.0
Frees Wan Frees Wan 2.04
Openswan Openswan 2.1.6
Openswan Openswan 2.3
Openswan Openswan 2.1.1
Openswan Openswan 2.1.2
Openswan Openswan 2.1.4
Openswan Openswan 2.1.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started