The vulnerability of the VPN protocol library using “IPsec” in libreswan, related to the use of the PreSharedKey secret for creating the AUTH payload in IKEAuth Exchange, allows a attacker to perform a type of “Denial-of-Service” attack.
[source-iocs-preserved const=IKE_AUTH]
The vulnerability of the VPN protocol using “IPsec” with libreswan is related to the use of the PreSharedKey secret for generating the AUTH payload in IKE Auth Exchange. Exploiting this vulnerability allows a remote attacker to perform a type of “denial-of-service” attack. source-iocs-preserved...