The IPSEC livetest tool in Openswan 2.4.12 and previous versions, and 2.6.x up to and including 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the (1) ipseclive.conn and (2) ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream version, this tool has been disabled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openswan openswan 1.0.9 |
||
openswan openswan 2.1.1 |
||
xelerance openswan 2.4.0 |
||
xelerance openswan 2.4.2 |
||
xelerance openswan 2.3.1 |
||
xelerance openswan 2.6.04 |
||
xelerance openswan 2.6.05 |
||
xelerance openswan 2.6.12 |
||
xelerance openswan 2.6.13 |
||
openswan openswan 2.2 |
||
openswan openswan 2.3 |
||
openswan openswan 1.0.4 |
||
xelerance openswan 2.6.03 |
||
xelerance openswan 2.6.10 |
||
xelerance openswan 2.6.11 |
||
openswan openswan 2.1.5 |
||
openswan openswan 2.1.6 |
||
openswan openswan 1.0.6 |
||
openswan openswan 1.0.5 |
||
xelerance openswan 2.6.08 |
||
xelerance openswan 2.6.09 |
||
xelerance openswan 2.6.16 |
||
xelerance openswan 2.4.4 |
||
openswan openswan 2.1.2 |
||
openswan openswan 2.1.4 |
||
openswan openswan 1.0.8 |
||
openswan openswan 1.0.7 |
||
xelerance openswan 2.6.06 |
||
xelerance openswan 2.6.07 |
||
xelerance openswan 2.6.14 |
||
xelerance openswan 2.6.15 |