Vulnerability Details : CVE-2011-1784
The pidfile_write function in core/pidfile.c in keepalived 1.2.2 and earlier uses 0666 permissions for the (1) keepalived.pid, (2) checkers.pid, and (3) vrrp.pid files in /var/run/, which allows local users to kill arbitrary processes by writing a PID to one of these files.
Products affected by CVE-2011-1784
- cpe:2.3:a:keepalived:keepalived:*:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.5:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.13:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.14:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.2.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.2.7:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.4.9a:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.4:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.7.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.7.6:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.11:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.12:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.19:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.20:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.3.8:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.8:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.5.9:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.8:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.7:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.8:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.15:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.16:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.2.3:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.4.8:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.4.9:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.9:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:0.6.10:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.9:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.10:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.17:*:*:*:*:*:*:*
- cpe:2.3:a:keepalived:keepalived:1.1.18:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2011-1784
0.04%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 6 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-1784
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
3.6
|
LOW | AV:L/AC:L/Au:N/C:N/I:P/A:P |
3.9
|
4.9
|
NIST |
CWE ids for CVE-2011-1784
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-1784
-
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=626281
#626281 - pid file has wrong permissions - Debian Bug report logs
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/67477
keepalived PID denial of service CVE-2011-1784 Vulnerability Report
-
http://openwall.com/lists/oss-security/2011/05/16/7
oss-security - Re: CVE request: keepalived pid file permissions issue
-
http://www.securityfocus.com/bid/47859
keepalived Insecure PID Files Insecure File Permissions Vulnerability
-
http://lists.debian.org/debian-security/2011/05/msg00012.html
World writable pid and lock files.
-
http://lists.debian.org/debian-security/2011/05/msg00013.html
Re: World writable pid and lock files.
-
http://lists.debian.org/debian-security/2011/05/msg00018.html
Re: World writable pid and lock files.
-
http://openwall.com/lists/oss-security/2011/05/10/5
oss-security - CVE request: keepalived pid file permissions issue
-
https://bugzilla.redhat.com/show_bug.cgi?id=704039
704039 – (CVE-2011-1784) CVE-2011-1784 keepalived: insecure permissions on pid files
Jump to