3 matches found
CVE-2017-10042
CVE-2017-10042 affects Oracle Solaris 10 and 11, specifically the IKE implementation in the Solaris component of Oracle Sun Systems Products Suite. The vulnerability is exploitable over the network with no authentication required via IKE, potentially allowing an attacker to cause a hang or freque...
Oracle Solaris Critical Patch Update : jul2017_SRU11_3_9_4_0
This Solaris system is missing necessary patches to address a critical security update : - Vulnerability in the Solaris component of Oracle Sun Systems Products Suite subcomponent: IKE. Supported versions that are affected are 10 and 11. Easily exploitable vulnerability allows unauthenticated...
IKE/IKEv2 protocol implementations may allow network amplification attacks
Overview Implementations of the IKEv2 protocol are vulnerable to network amplification attacks. Description CWE-406: Insufficient Control of Network Message Volume Network Amplification IKE/IKEv2 and other UDP-based protocols can be used to amplify denial-of-service attacks. In some scenarios, an...