Lucene search

FreeBSDB7CB488C-8349-11D8-A41F-0020ED76EF5A

HistoryMar 17, 2004 - 12:00 a.m.

isakmpd payload handling denial-of-service vulnerabilities

2004-03-1700:00:00

vuxml.freebsd.org

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.387 Low

EPSS

Percentile

97.2%

JSON

Numerous errors in isakmpd’s input packet validation lead to
denial-of-service vulnerabilities. From the Rapid7 advisory:

The ISAKMP packet processing functions in OpenBSD’s
isakmpd daemon contain multiple payload handling flaws
that allow a remote attacker to launch a denial of
service attack against the daemon.
Carefully crafted ISAKMP packets will cause the isakmpd
daemon to attempt out-of-bounds reads, exhaust available
memory, or loop endlessly (consuming 100% of the CPU).

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchisakmpd<= 20030903UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	isakmpd	<= 20030903	UNKNOWN

References

www.openbsd.org/errata34.html

www.rapid7.com/advisories/R7-0018.html

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.387 Low

EPSS

Percentile

97.2%

JSON

Related for B7CB488C-8349-11D8-A41F-0020ED76EF5A