Novell BorderManager IKE.NLM VPN Service DoS

2004-07-15T07:17:10
ID OSVDB:7920
Type osvdb
Reporter OSVDB
Modified 2004-07-15T07:17:10

Description

Vulnerability Description

Novell BorderManager contains a flaw that may allow a remote denial of service. The issue is triggered when a crafted ISAKMP packet is processed by the IKE.NLM VPN module, and will result in loss of availability for the service.

Solution Description

Upgrade to version 3.8 SP2A or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Novell BorderManager contains a flaw that may allow a remote denial of service. The issue is triggered when a crafted ISAKMP packet is processed by the IKE.NLM VPN module, and will result in loss of availability for the service.

References:

Security Tracker: 1010702 Secunia Advisory ID:12067 Other Solution URL: http://support.novell.com/cgi-bin/search/searchtid.cgi?/2969251.htm Other Advisory URL: http://support.novell.com/cgi-bin/search/searchtid.cgi?/10093576.htm ISS X-Force ID: 16697 CVE-2004-1457