Lucene search
HistoryMar 06, 2008 - 9:44 p.m.
CVE-2008-1198
red hat enterprise linux
ipsec
racoon
aggressive ike mode
brute force attacks
nvd
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.6%
The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.
Affected configurations
Node
redhatenterprise_linuxMatch4.0
ORredhatenterprise_linuxMatch3.0
ORredhatenterprise_linuxMatch5.0
Related
nessus
nessus
Oracle Linux 5 : initscripts (ELSA-2012-0312)
2013-07-12 00:00:00
RHEL 4 : initscripts (Unpatched Vulnerability)
2024-06-03 00:00:00
openvas
openvas
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2012-0312)
2015-10-06 00:00:00
cvelist
cvelist
CVE-2008-1198
2008-03-06 21:00:00
prion
prion
Default configuration
2008-03-06 21:44:00
oraclelinux
oraclelinux
initscripts security and bug fix update
2012-03-01 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 01:12:05
redhat
redhat
(RHSA-2012:0312) Low: initscripts security and bug fix update
2012-02-21 00:00:00
ubuntucve
ubuntucve
CVE-2008-1198
2008-03-06 00:00:00
nvd
nvd
CVE-2008-1198
2008-03-06 21:44:00
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
6.3 Medium
AI Score
Confidence
Low
0.004 Low
EPSS
Percentile
73.6%
Related for CVE-2008-1198