Lucene search
+L

299 matches found

Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.2 views

PT-2023-18792 · Libreswan +4 · Libreswan +4

Name of the Vulnerable Software and Affected Versions: libreswan affected versions not specified Description: A security issue was found in the libreswan library. This occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not...

7.5CVSS7.4AI score0.01581EPSS
Exploits0References20
RedhatCVE
RedhatCVE
added 2023/05/05 8:51 a.m.33 views

CVE-2023-2295

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS7AI score0.01581EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2023/05/05 12:0 a.m.27 views

libreswan security update

4.6-3.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.6-3.1 - Resolves: rhbz2187170 fix handling of IKEv1 aggressive mode packets...

7.5CVSS6.9AI score0.01175EPSS
Exploits0
Oracle linux
Oracle linux
added 2023/05/05 12:0 a.m.29 views

libreswan security update

4.5-1.0.1 - Add libreswan-oracle.patch to detect Oracle Linux distro 4.5-1.1 - Resolves: rhbz2187178 fix handling of IKEv1 aggressive mode packets...

7.5CVSS6.9AI score0.01175EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2023/05/04 1:21 p.m.7 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:20 p.m.5 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:18 p.m.6 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:18 p.m.7 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:8 p.m.6 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2023/05/04 1:3 p.m.11 views

libreswan: Malicious IKEv1 Aggressive Mode packets can crash libreswan

A vulnerability was found in the libreswan library. This security issue occurs when an IKEv1 Aggressive Mode packet is received with only unacceptable crypto algorithms, and the response packet is not sent with a zero responder SPI. When a subsequent packet is received where the sender reuses the...

7.5CVSS6.4AI score0.01175EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.18 views

RHEL 8 : libreswan (RHSA-2023:2122)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2122 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.21 views

RHEL 8 : libreswan (RHSA-2023:2123)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2123 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.19 views

RHEL 8 : libreswan (RHSA-2023:2125)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2125 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/05/04 12:0 a.m.26 views

RHEL 8 : libreswan (RHSA-2023:2124)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:2124 advisory. Libreswan is an implementation of IPsec and IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both...

7.5CVSS6.9AI score0.01175EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/05/03 12:0 a.m.3 views

PT-2023-22795 · Libreswan +3 · Libreswan +3

Name of the Vulnerable Software and Affected Versions: Libreswan versions 3.28 through 4.10 Description: The issue allows for a denial of service, causing the daemon to crash due to responder SPI mishandling. This can be triggered via unauthenticated IKEv1 Aggressive Mode packets. Recommendations...

7.5CVSS7.2AI score0.01581EPSS
Exploits0References34
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.35 views

K16576941: ISC BIND vulnerability CVE-2018-5737

Security Advisory Description A problem with the implementation of the new serve-stale feature in BIND 9.12 can lead to an assertion failure in rbtdb.c, even when stale-answer-enable is off. Additionally, problematic interaction between the serve-stale feature and NSEC aggressive negative caching...

7.5CVSS6.1AI score0.10355EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/02/15 6:21 a.m.8 views

SUSE CVE-2002-1623

The design of the Internet Key Exchange IKE protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by 1 monitoring responses before the password is...

5CVSS7.1AI score0.48573EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.5 views

SUSE CVE-2005-3732

The Internet Key Exchange version 1 IKEv1 implementation isakmpagg.c in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service null dereference and crash via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for...

7.8CVSS6.8AI score0.04567EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.4 views

SUSE CVE-2005-3671

The Internet Key Exchange version 1 IKEv1 implementation in Openswan 2 openswan-2 before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.041.5.4-1.23, allow remote attackers to cause a denial of service via 1 a crafted packet using 3DES with an invalid key length, or 2 unspecified inputs when...

7.8CVSS6.8AI score0.07453EPSS
Exploits1References4
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.0 views

SUSE CVE-2008-1198

The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key PSK hash...

7.1CVSS6.9AI score0.02432EPSS
Exploits1References3
Rows per page
Query Builder