Lucene search

[email protected]CVE-2015-4047

HistoryMay 29, 2015 - 3:59 p.m.

CVE-2015-4047

2015-05-2915:59:19

CWE-476

[email protected]

web.nvd.nist.gov

cve-2015-4047

ipsec-tools 0.8.2

racoon

gssapi.c

remote attack

denial of service

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.3 Medium

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.1%

JSON

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.

Affected configurations

NVD

Node

ipsec-toolsipsec-toolsMatch0.8.2

Node

canonicalubuntu_linuxMatch12.04lts

Node

fedoraprojectfedoraMatch20

fedoraprojectfedoraMatch21

Node

f5big-ip_application_acceleration_managerRange11.4.0–11.6.4

f5big-ip_application_acceleration_managerRange12.0.0–12.1.4

f5big-ip_application_acceleration_managerMatch13.0.0

Node

f5big-ip_local_traffic_managerRange11.0.0–11.6.4

f5big-ip_local_traffic_managerRange12.0.0–12.1.4

f5big-ip_local_traffic_managerMatch13.0.0

Node

f5big-ip_advanced_firewall_managerRange11.3.0–11.6.4

f5big-ip_advanced_firewall_managerRange12.0.0–12.1.4

f5big-ip_advanced_firewall_managerMatch13.0.0

Node

f5big-ip_analyticsRange11.0.0–11.6.4

f5big-ip_analyticsRange12.0.0–12.1.4

f5big-ip_analyticsMatch13.0.0

Node

f5big-ip_access_policy_managerRange11.0.0–11.6.4

f5big-ip_access_policy_managerRange12.0.0–12.1.4

f5big-ip_access_policy_managerMatch13.0.0

Node

f5big-ip_application_security_managerRange11.0.0–11.6.4

f5big-ip_application_security_managerRange12.0.0–12.1.4

f5big-ip_application_security_managerMatch13.0.0

Node

f5big-ip_domain_name_systemRange12.0.0–12.1.4

f5big-ip_domain_name_systemMatch13.0.0

Node

f5big-ip_edge_gatewayRange11.0.0–11.3.0

f5big-ip_global_traffic_managerRange11.0.0–11.6.4

Node

f5big-ip_link_controllerRange11.0.0–11.6.4

f5big-ip_link_controllerRange12.0.0–12.1.4

f5big-ip_link_controllerMatch13.0.0

Node

f5big-ip_policy_enforcement_managerRange11.3.0–11.6.4

f5big-ip_policy_enforcement_managerRange12.0.0–12.1.4

f5big-ip_policy_enforcement_managerMatch13.0.0

Node

f5big-ip_protocol_security_managerRange11.0.0–11.4.1

f5big-ip_wan_optimization_managerRange11.0.0–11.3.0

f5big-ip_webacceleratorRange11.0.0–11.3.0

f5big-iq_adcMatch4.5.0

f5big-iq_centralized_managementMatch4.6.0

f5big-iq_cloudRange4.0.0–4.5.0

f5big-iq_cloud_and_orchestrationMatch1.0.0

f5big-iq_deviceRange4.2.0–4.5.0

f5big-iq_securityRange4.0.0–4.5.0

f5enterprise_managerRange3.0.0–3.1.1

Node

debiandebian_linuxMatch7.0

debiandebian_linuxMatch8.0

debiandebian_linuxMatch9.0

CPENameOperatorVersion
ipsec-tools:ipsec-toolsipsec-toolseq0.8.2

CPE	Name	Operator	Version
ipsec-tools:ipsec-tools	ipsec-tools	eq	0.8.2

References

lists.fedoraproject.org/pipermail/package-announce/2015-June/159482.html

lists.fedoraproject.org/pipermail/package-announce/2015-June/159549.html

packetstormsecurity.com/files/131992/IPsec-Tools-0.8.2-Denial-Of-Service.html

seclists.org/fulldisclosure/2015/May/81

seclists.org/fulldisclosure/2015/May/83

www.debian.org/security/2015/dsa-3272

www.openwall.com/lists/oss-security/2015/05/20/1

www.openwall.com/lists/oss-security/2015/05/21/11

www.securityfocus.com/bid/74739

www.securitytracker.com/id/1032397

www.ubuntu.com/usn/USN-2623-1

support.f5.com/csp/article/K05013313

www.altsci.com/ipsec/ipsec-tools-sa.html

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.3 Medium

AI Score

Confidence

Low

0.018 Low

EPSS

Percentile

88.1%

JSON

Related for CVE-2015-4047

f52 openvas8 alpinelinux1 nessus8 fedora2 debiancve1 securityvulns2 cvelist1 nvd1 debian3 osv1 ubuntu1 mageia1 ubuntucve1 prion1