OpenBSD isakmpd Delete Payload Handling DoS

2004-03-23T10:17:09
ID OSVDB:5700
Type osvdb
Reporter Rapid7 Security Advisories(advisory@rapid7.com)
Modified 2004-03-23T10:17:09

Description

Vulnerability Description

OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially-crafted ISAKMP packet containing a malformed delete payload with a large number of Security Parameter Indexes (SPI), and will result in loss of availability for the service.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, OpenBSD has released a patch to address this vulnerability.

Short Description

OpenBSD contains a flaw that may allow a remote denial of service. The issue is triggered when an attacker sends a specially-crafted ISAKMP packet containing a malformed delete payload with a large number of Security Parameter Indexes (SPI), and will result in loss of availability for the service.

References:

Vendor URL: http://www.openbsd.org/errata.html Security Tracker: 1009468 Secunia Advisory ID:11156 Related OSVDB ID: 5698 Related OSVDB ID: 5701 Related OSVDB ID: 5699 Related OSVDB ID: 4336 Other Advisory URL: http://packetstormsecurity.nl/0403-advisories/R7-0018.isakmpd.txt Other Advisory URL: http://www.rapid7.com/advisories/R7-0018.html Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=108008530028019&w=2 Keyword: rapid7,ipsec,vpn ISS X-Force ID: 15630 CVE-2004-0221 Bugtraq ID: 10031