279 matches found
Debian DLA-234-1 : ipsec-tools security update
Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of service. NOTE: Tenable Network Security has extracted th...
[SECURITY] [DLA 234-1] ipsec-tools security update
Package : ipsec-tools Version : 1:0.7.3-12+deb6u1 CVE ID : CVE-2015-4047 Debian Bug : 785778 Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted U...
DLA-234-1 ipsec-tools - security update
Bulletin has no description...
CVE-2015-4047
The CVE-2015-4047 vulnerability affects ipsec-tools, specifically the racoon daemon's code path in racoon/gssapi.c. A remote attacker can send crafted UDP requests to trigger a NULL pointer dereference, causing the IKE daemon to crash and resulting in DoS. The issue is associated with IPsec-Tools...
CVE-2015-4047
Removed by vendor...
Debian DSA-3272-1 : ipsec-tools - security update
Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security,...
[SECURITY] [DSA 3272-1] ipsec-tools security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3272-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 23, 2015 http://www.debian.org/security/faq -...
[SECURITY] [DSA 3272-1] ipsec-tools security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3272-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso May 23, 2015 http://www.debian.org/security/faq -...
Debian Security Advisory DSA 3272-1 (ipsec-tools - security update)
Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools. A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of service. OpenVAS Vulnerability Test $Id: deb3272.nasl 66...
DSA-3272-1 ipsec-tools - security update
Bulletin has no description...
CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service NULL pointer dereference and IKE daemon crash via a series of crafted UDP requests...
Debian: Security Advisory (DSA-3272-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
UBUNTU-CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service NULL pointer dereference and IKE daemon crash via a series of crafted UDP requests...
IPsec-Tools Prior to 0.7.2 - Multiple Remote Denial of Service Vulnerabilities
No description provided by source. / racoon-isakmp-dos.c Copyright c 2009 by [email protected] ipsec-tools racoon frag-isakmp DoS POC by mu-b - Thu Apr 02 2009 - Tested on: ipsec-tools-0.7.1 - Private Source Code -DO NOT DISTRIBUTE - http://www.digit-labs.org/ -- Digit-Labs 2009!@$! / include...
KAME Racoon "Initial Contact" SA Deletion Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations SAs in hosts running the KAME IKE daemon Racoon. / Sun Microsystems Solaris sysinfo Kernel Memory Disclosure...
PFsense UTM Platform 2.0.1 XSS Vulnerability
No description provided by source. ???????????????????????????????????????????????????????????????????????????????? ? Exploit Title: pfSense = 2.0.1 XSS & CSRF during IPSec XAuth authentication ? Date: 04/01/2013 ? Author: Dimitris Strevinas ? Vendor or Software Link: www.pfsense.org ? Version: =...
Oracle Linux 5 : Moderate: / ipsec-tools (ELSA-2007-0342)
The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2007-0342 advisory. 0.6.5-8 - Upstream fix for Racoon DOS, informational delete must be encrypted - Resolves: rhbz235388 - CVE-2007-1841 ipsec-tools racoon DoS 0.6.5-7 - Resolves:...
Oracle Linux 5 : ipsec-tools (ELSA-2009-1036)
The remote Oracle Linux 5 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2009-1036 advisory. 0.6.5-13.1 - fix nul dereference in frag code and some memory leaks 497990 Tenable has extracted the preceding description block directly from the Orac...
PFsense UTM Platform 2.0.1 XSS / CSRF
┴┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┴ │ Exploit Title: pfSense = 2.0.1 XSS & CSRF during IPSec XAuth authentication │ Date: 04/01/2013 │ Author: Dimitris Strevinas │ Vendor or Software Link: www.pfsense.org │ Version: = 2.0.1 │ Category: Semi-Persistent X...
pfSense UTM Platform 2.0.1 - Cross-Site Scripting
pfSense UTM Platform 2.0.1 - Cross-Site Scripting ┴┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┬┴ │ Exploit Title: pfSense = 2.0.1 XSS & CSRF during IPSec XAuth authentication │ Date: 04/01/2013 │ Author: Dimitris Strevinas │ Vendor or Software Link: www.pfsense.or...