CVE-2011-4073 [中] | Denial of Service（Openswan）

Use-after-free vulnerability in the cryptographic helper handler functionality in Openswan 2.3.0 through 2.6.36 allows remote authenticated users to cause a denial of service (pluto IKE daemon crash) via vectors related to the (1) quick_outI1_continue and (2) quick_outI1 functions.

#	日期	舊 EPSS 分數	新 EPSS 分數	變化（新 − 舊）
1	2026-06-15	1.15%	2.17%	+1.02%
2	2025-05-30	1.25%	1.15%	-0.10%
3	2025-03-30	—	1.25%	—

日期

舊 EPSS 分數

新 EPSS 分數

變化（新 − 舊）

2026-06-15

1.15%

2.17%

+1.02%

2025-05-30

1.25%

1.15%

-0.10%

2025-03-30

—

1.25%

—

底座分	版本	嚴重度	向量	可利用性	影響	分數來源
4.0	2.0	MEDIUM	`AV:N/AC:L/Au:S/C:N/I:N/A:P` 點擊展開存取路徑 (AV:N) 只要路由可達，即可從遠端發動利用。存取複雜度 (AC:L) 步驟短、路徑清楚，重現成本低。認證 (AU:S) 突破一次認證邊界即可。機密性影響 (C:N) 對機密性無影響。完整性影響 (I:N) 對完整性無影響。可用性影響 (A:P) 可用性受到部分損害。	8.0	2.9	[email protected]

底座分

版本

嚴重度

向量

可利用性

影響

分數來源

4.0

2.0

MEDIUM

AV:N/AC:L/Au:S/C:N/I:N/A:P 點擊展開

存取路徑 (AV:N): 只要路由可達，即可從遠端發動利用。
存取複雜度 (AC:L): 步驟短、路徑清楚，重現成本低。
認證 (AU:S): 突破一次認證邊界即可。
機密性影響 (C:N): 對機密性無影響。
完整性影響 (I:N): 對完整性無影響。
可用性影響 (A:P): 可用性受到部分損害。

8.0

2.9

[email protected]

CVE-2011-4073 的 OS 追蹤

vendor	priority	summary	link
`gentoo`	normal	CVE-2011-4073: 1 GLSA(s) (201203-13), 1 atom(s) (net-misc/openswan); latest impact normal.	https://bugs.gentoo.org/buglist.cgi?quicksearch=CVE-2011-4073
`redhat`	medium	—	https://access.redhat.com/security/cve/CVE-2011-4073
`ubuntu`	low	CVE-2011-4073 low priority: Ubuntu including 1 source packages (openswan), 10 status rows across 10 suites (hardy, lucid, maverick, natty, oneiric, precise, quantal, raring, saucy, upstream): not-affected 4, ignored 3, released 3.	https://ubuntu.com/security/CVE-2011-4073

CVE-2011-4073 的影響軟體 / 設定

廠商	產品	版本	原始 CPE
xelerance	openswan	2.3.0	cpe:2.3:a:xelerance:openswan:2.3.0:::::::*
xelerance	openswan	2.3.1	cpe:2.3:a:xelerance:openswan:2.3.1:::::::*
xelerance	openswan	2.4.0	cpe:2.3:a:xelerance:openswan:2.4.0:::::::*
xelerance	openswan	2.4.1	cpe:2.3:a:xelerance:openswan:2.4.1:::::::*
xelerance	openswan	2.4.2	cpe:2.3:a:xelerance:openswan:2.4.2:::::::*
xelerance	openswan	2.4.3	cpe:2.3:a:xelerance:openswan:2.4.3:::::::*
xelerance	openswan	2.4.4	cpe:2.3:a:xelerance:openswan:2.4.4:::::::*
xelerance	openswan	2.4.5	cpe:2.3:a:xelerance:openswan:2.4.5:::::::*
xelerance	openswan	2.4.6	cpe:2.3:a:xelerance:openswan:2.4.6:::::::*
xelerance	openswan	2.4.7	cpe:2.3:a:xelerance:openswan:2.4.7:::::::*
xelerance	openswan	2.4.8	cpe:2.3:a:xelerance:openswan:2.4.8:::::::*
xelerance	openswan	2.4.9	cpe:2.3:a:xelerance:openswan:2.4.9:::::::*
xelerance	openswan	2.4.10	cpe:2.3:a:xelerance:openswan:2.4.10:::::::*
xelerance	openswan	2.4.11	cpe:2.3:a:xelerance:openswan:2.4.11:::::::*
xelerance	openswan	2.4.12	cpe:2.3:a:xelerance:openswan:2.4.12:::::::*
xelerance	openswan	2.4.13	cpe:2.3:a:xelerance:openswan:2.4.13:::::::*
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:::::::*
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:sbs4::::::
xelerance	openswan	2.5.0	cpe:2.3:a:xelerance:openswan:2.5.0:sbs5::::::
xelerance	openswan	2.5.01	cpe:2.3:a:xelerance:openswan:2.5.01:::::::*
xelerance	openswan	2.5.02	cpe:2.3:a:xelerance:openswan:2.5.02:::::::*
xelerance	openswan	2.5.03	cpe:2.3:a:xelerance:openswan:2.5.03:::::::*
xelerance	openswan	2.5.04	cpe:2.3:a:xelerance:openswan:2.5.04:::::::*
xelerance	openswan	2.5.05	cpe:2.3:a:xelerance:openswan:2.5.05:::::::*
xelerance	openswan	2.5.06	cpe:2.3:a:xelerance:openswan:2.5.06:::::::*
xelerance	openswan	2.5.07	cpe:2.3:a:xelerance:openswan:2.5.07:::::::*
xelerance	openswan	2.5.08	cpe:2.3:a:xelerance:openswan:2.5.08:::::::*
xelerance	openswan	2.5.09	cpe:2.3:a:xelerance:openswan:2.5.09:::::::*
xelerance	openswan	2.5.10	cpe:2.3:a:xelerance:openswan:2.5.10:::::::*
xelerance	openswan	2.5.11	cpe:2.3:a:xelerance:openswan:2.5.11:::::::*
xelerance	openswan	2.5.12	cpe:2.3:a:xelerance:openswan:2.5.12:::::::*
xelerance	openswan	2.5.13	cpe:2.3:a:xelerance:openswan:2.5.13:::::::*
xelerance	openswan	2.5.14	cpe:2.3:a:xelerance:openswan:2.5.14:::::::*
xelerance	openswan	2.5.15	cpe:2.3:a:xelerance:openswan:2.5.15:::::::*
xelerance	openswan	2.5.16	cpe:2.3:a:xelerance:openswan:2.5.16:::::::*
xelerance	openswan	2.5.17	cpe:2.3:a:xelerance:openswan:2.5.17:::::::*
xelerance	openswan	2.5.18	cpe:2.3:a:xelerance:openswan:2.5.18:::::::*
xelerance	openswan	2.6.01	cpe:2.3:a:xelerance:openswan:2.6.01:::::::*
xelerance	openswan	2.6.02	cpe:2.3:a:xelerance:openswan:2.6.02:::::::*
xelerance	openswan	2.6.03	cpe:2.3:a:xelerance:openswan:2.6.03:::::::*
xelerance	openswan	2.6.04	cpe:2.3:a:xelerance:openswan:2.6.04:::::::*
xelerance	openswan	2.6.05	cpe:2.3:a:xelerance:openswan:2.6.05:::::::*
xelerance	openswan	2.6.06	cpe:2.3:a:xelerance:openswan:2.6.06:::::::*
xelerance	openswan	2.6.07	cpe:2.3:a:xelerance:openswan:2.6.07:::::::*
xelerance	openswan	2.6.08	cpe:2.3:a:xelerance:openswan:2.6.08:::::::*
xelerance	openswan	2.6.09	cpe:2.3:a:xelerance:openswan:2.6.09:::::::*
xelerance	openswan	2.6.10	cpe:2.3:a:xelerance:openswan:2.6.10:::::::*
xelerance	openswan	2.6.11	cpe:2.3:a:xelerance:openswan:2.6.11:::::::*
xelerance	openswan	2.6.12	cpe:2.3:a:xelerance:openswan:2.6.12:::::::*
xelerance	openswan	2.6.13	cpe:2.3:a:xelerance:openswan:2.6.13:::::::*
xelerance	openswan	2.6.14	cpe:2.3:a:xelerance:openswan:2.6.14:::::::*
xelerance	openswan	2.6.15	cpe:2.3:a:xelerance:openswan:2.6.15:::::::*
xelerance	openswan	2.6.16	cpe:2.3:a:xelerance:openswan:2.6.16:::::::*
xelerance	openswan	2.6.17	cpe:2.3:a:xelerance:openswan:2.6.17:::::::*
xelerance	openswan	2.6.18	cpe:2.3:a:xelerance:openswan:2.6.18:::::::*
xelerance	openswan	2.6.19	cpe:2.3:a:xelerance:openswan:2.6.19:::::::*
xelerance	openswan	2.6.20	cpe:2.3:a:xelerance:openswan:2.6.20:::::::*
xelerance	openswan	2.6.21	cpe:2.3:a:xelerance:openswan:2.6.21:::::::*
xelerance	openswan	2.6.22	cpe:2.3:a:xelerance:openswan:2.6.22:::::::*
xelerance	openswan	2.6.23	cpe:2.3:a:xelerance:openswan:2.6.23:::::::*
xelerance	openswan	2.6.24	cpe:2.3:a:xelerance:openswan:2.6.24:::::::*
xelerance	openswan	2.6.25	cpe:2.3:a:xelerance:openswan:2.6.25:::::::*
xelerance	openswan	2.6.26	cpe:2.3:a:xelerance:openswan:2.6.26:::::::*
xelerance	openswan	2.6.27	cpe:2.3:a:xelerance:openswan:2.6.27:::::::*
xelerance	openswan	2.6.28	cpe:2.3:a:xelerance:openswan:2.6.28:::::::*
xelerance	openswan	2.6.29	cpe:2.3:a:xelerance:openswan:2.6.29:::::::*
xelerance	openswan	2.6.30	cpe:2.3:a:xelerance:openswan:2.6.30:::::::*
xelerance	openswan	2.6.31	cpe:2.3:a:xelerance:openswan:2.6.31:::::::*
xelerance	openswan	2.6.32	cpe:2.3:a:xelerance:openswan:2.6.32:::::::*
xelerance	openswan	2.6.33	cpe:2.3:a:xelerance:openswan:2.6.33:::::::*
xelerance	openswan	2.6.34	cpe:2.3:a:xelerance:openswan:2.6.34:::::::*
xelerance	openswan	2.6.35	cpe:2.3:a:xelerance:openswan:2.6.35:::::::*
xelerance	openswan	2.6.36	cpe:2.3:a:xelerance:openswan:2.6.36:::::::*

CVE-2011-4073 的參考連結

URL	標籤
http://secunia.com/advisories/46678	Vendor Advisory
http://secunia.com/advisories/46681	Vendor Advisory
http://secunia.com/advisories/47342	Vendor Advisory
http://www.debian.org/security/2011/dsa-2374
http://www.openswan.org/download/CVE-2011-4073/CVE-2011-4073.txt
http://www.redhat.com/support/errata/RHSA-2011-1422.html
http://www.securityfocus.com/bid/50440
http://www.securitytracker.com/id?1026268

URL

標籤

http://secunia.com/advisories/46678

Vendor Advisory

http://secunia.com/advisories/46681

Vendor Advisory

http://secunia.com/advisories/47342

Vendor Advisory

http://www.debian.org/security/2011/dsa-2374

http://www.openswan.org/download/CVE-2011-4073/CVE-2011-4073.txt

http://www.redhat.com/support/errata/RHSA-2011-1422.html

http://www.securityfocus.com/bid/50440