Lucene search
MitreCVELIST:CVE-2004-0155HistoryApr 16, 2004 - 4:00 a.m.
CVE-2004-0155
2004-04-1604:00:00
mitre
raw.githubusercontent.com
1
The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-middle attacks using a valid, trusted X.509 certificate.
Related
openvas
openvas
FreeBSD Ports: racoon
2008-09-04 00:00:00
FreeBSD Ports: racoon
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools)
2008-09-24 00:00:00
nessus
nessus
FreeBSD : racoon fails to verify signature during Phase 1 (163)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : ipsec-tools (MDKSA-2004:027)
2004-07-31 00:00:00
ubuntucve
ubuntucve
CVE-2004-0155
2004-06-01 00:00:00
cert
cert
KAME Racoon IKE daemon fails to properly verify client RSA signatures
2004-04-09 00:00:00
debiancve
debiancve
CVE-2004-0155
2004-06-01 04:00:00
cve
cve
CVE-2004-0155
2004-06-01 04:00:00
freebsd
freebsd
racoon fails to verify signature during Phase 1
2004-04-05 00:00:00
gentoo
gentoo
IPsec-Tools: authentication bug in racoon
2004-06-22 00:00:00
redhat
redhat
(RHSA-2004:165) ipsec-tools security update
2004-05-11 00:00:00