Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-3380
HistoryNov 17, 2011 - 7:55 p.m.

CVE-2011-3380

2011-11-1719:55:01
[email protected]
web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

JSON

Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.

Affected configurations

NVD
Node
xeleranceopenswanMatch2.6.29
OR
xeleranceopenswanMatch2.6.30
OR
xeleranceopenswanMatch2.6.31
OR
xeleranceopenswanMatch2.6.32
OR
xeleranceopenswanMatch2.6.33
OR
xeleranceopenswanMatch2.6.34
OR
xeleranceopenswanMatch2.6.35

Related

cve 1
nessus 9
openvas 6
ubuntucve 1
fedora 5
redhat 1
oraclelinux 1
veracode 1
prion 1
cvelist 1
amazon 1
cve
cve
CVE-2011-3380
2011-11-17 19:55:01
nessus
nessus
Amazon Linux AMI : openswan (ALAS-2011-6)
2014-10-12 00:00:00
Fedora 16 : openswan-2.6.36-1.fc16 (2011-13825)
2011-10-17 00:00:00
Scientific Linux Security Update : openswan on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2011-6)
2015-09-08 00:00:00
Fedora Update for openswan FEDORA-2011-13825
2012-04-02 00:00:00
RedHat Update for openswan RHSA-2011:1356-01
2012-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2011-3380
2011-11-17 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openswan-2.6.36-1.fc16
2011-10-16 00:57:50
[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15
2011-10-13 23:50:56
[SECURITY] Fedora 14 Update: openswan-2.6.33-2.fc14
2011-10-13 23:55:31
redhat
redhat
(RHSA-2011:1356) Moderate: openswan security update
2011-10-05 00:00:00
oraclelinux
oraclelinux
openswan security update
2011-10-05 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:07:32
prion
prion
Null pointer dereference
2011-11-17 19:55:00
cvelist
cvelist
CVE-2011-3380
2011-11-17 19:00:00
amazon
amazon
Medium: openswan
2011-10-10 23:54:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.4 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

81.0%

JSON
Related for NVD:CVE-2011-3380
cve1nessus9openvas6ubuntucve1fedora5redhat1oraclelinux1veracode1prion1cvelist1amazon1