19 matches found
EUVD-2004-0606
Malware in sbrugna...
EUVD-2005-0399
Malware in sbrugna...
KAME Racoon "Initial Contact" SA Deletion Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory Disclosure...
[Full-disclosure] SCOSA-2005.52 OpenServer 6.0.0 : KAME Racoon Daemon Denial of Service Vulnerability
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SCO Security Advisory Subject: OpenServer 6.0.0 : KAME Racoon Daemon Denial of Service Vulnerability Advisory number: SCOSA-2005.52 Issue date: 2005 November 28 Cross reference: sr895064 erg712954 fz533033 CVE-2005-0398 1. Problem Description Racoon i...
KAME/racoon VPN Detection
Binary data 2948.prm...
CVE-2005-0398
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service crash via malformed ISAKMP packets...
CVE-2005-0398
Removed by vendor...
security flaw
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service crash via malformed ISAKMP packets...
CVE-2005-0398
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service crash via malformed ISAKMP packets...
CVE-2005-0398
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service crash via malformed ISAKMP packets...
CVE-2004-0607
The eaycheckx509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication...
security flaw
The eaycheckx509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication...
CVE-2004-0607
The eaycheckx509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication...
CVE-2004-0607
The CVE-2004-0607 issue affects KAME Racoon’s eay_check_x509cert function, which can verify certificates even when OpenSSL validation fails, potentially allowing remote attackers to bypass IKE authentication. Public documents (NVD, JVNDB, OpenVAS entries) confirm the vulnerability, but do not pro...
CVE-2004-0607
Removed by vendor...
KAME Racoon IKE daemon fails to properly verify client RSA signatures
Overview The KAME Racoon IKE daemon fails to properly verify client RSA signatures when using Main or Aggressive Mode during a Phase 1 IKE exchange. Description Racoon is an IKE Key Management daemon that negotiates and configures a set of parameters for IPSec. When authenticating a peer in Phase...
Kame Racoon Invalid Cookie Handling Remote DoS
The remote system appears to have a problem with processing requests with invalid cookie values. At least one VPN product racoon demonstrates this flaw. Racoon is integrated with: FreeBSD 4.0 and beyond OpenBSD 2.7 and beyond NetBSD 1.5 and beyond BSD/OS 4.2 and beyond However, the bug has only...
KAME Racoon - 'Initial Contact' SA Deletion
// source: https://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory Disclosure exploit...
KAME Racoon - Initial Contact SA Deletion
KAME Racoon - Initial Contact SA Deletion // source: https://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory...