5 matches found
openSUSE Security Update : strongswan (openSUSE-SU-2010:0496-1)
Remote unauthenticated attackers could cause a buffer overflow in strongswan's IKE deamon by using specially crafted certificates or identify information. Attackers could potentially exploit that to execute code CVE-2010-2628. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
SuSE 11.1 Security Update : strongswan (SAT Patch Number 2790)
Remote unauthenticated attackers could cause a buffer overflow in strongswan's IKE deamon by using specially crafted certificates or identify information. Attackers could potentially exploit that to execute code. CVE-2010-2628 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...
CVE-2010-2628
CVE-2010-2628 affects strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1, where the IKE daemon does not properly check snprintf return values, enabling remote code execution via crafted certificate or identity data that cause buffer overflows. Affected component: IKE daemon; root cause: imprope...
CVE-2010-2628
The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted 1 certificate or 2 identity data that triggers buffer overflows...
openSUSE Security Update : strongswan (openSUSE-SU-2010:0496-1)
Remote unauthenticated attackers could cause a buffer overflow in strongswan's IKE deamon by using specially crafted certificates or identify information. Attackers could potentially exploit that to execute code CVE-2010-2628. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...