CVE-2011-0022

Name of the Vulnerable Software and Affected Versions 389 Directory Server versions 1.2.x

Description The issue allows local users to cause a denial of service, potentially leading to daemon outage or arbitrary process termination, by replacing PID files in the /var/run/dirsrv directory. This is due to the setup scripts using 0777 permissions for the /var/run/dirsrv directory when multiple unprivileged instances are configured.

Recommendations For 389 Directory Server versions 1.2.x, consider changing the permissions of the /var/run/dirsrv directory to prevent local users from replacing PID files and causing a denial of service. As a temporary workaround, restrict access to the /var/run/dirsrv directory to minimize the risk of exploitation.