EUVD-2016-6671

Malware in sbrugna...

Multiple packages on Sun Solaris including (1) NSS; (2) Java JDK and JRE 5.0 Update 8 and earlier SDK and JRE 1.4.x up to 1.4.2_12 and SDK and JRE 1.3.x up to 1.3.1_19; (3) JSSE 1.0.3_03 and earlier; (4) IPSec/IKE; (5) Secure Global Desktop; and (6) StarOffice when using an RSA key with exponent 3 removes PKCS-1 padding before generating a hash which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents these products from correctly verifying X.509 and other certificates that use PKCS #1.

...

openSUSE Security Update : MozillaFirefox (openSUSE-2019-1782)

This update for MozillaFirefox, mozilla-nss fixes the following issues : MozillaFirefox to version ESR 60.8 : - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...

OPENSUSE-SU-2019:1782-1 Security update for MozillaFirefox

This update for MozillaFirefox, mozilla-nss fixes the following issues: MozillaFirefox to version ESR 60.8: - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...

SUSE SLED15 / SLES15 Security Update : MozillaFirefox (SUSE-SU-2019:1869-1)

This update for MozillaFirefox, mozilla-nss fixes the following issues : MozillaFirefox to version ESR 60.8 : CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. CVE-2019-11712:...

SUSE-SU-2019:1869-1 Security update for MozillaFirefox

This update for MozillaFirefox, mozilla-nss fixes the following issues: MozillaFirefox to version ESR 60.8: - CVE-2019-9811: Sandbox escape via installation of malicious language pack bsc1140868. - CVE-2019-11711: Script injection within domain through inner window reuse bsc1140868. -...

JVN#76692689: SEIL Series routers vulnerable to denial-of-service (DoS)

The IPsec/IKE function in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service DoS vulnerability due to a flaw in processing certain packets. Impact Receiving a specially crafted packet may result in a temporary failure of the device's encrypted communication...

CVE-2016-5736

The default configuration of the IPsec IKE peer listener in F5 BIG-IP LTM, Analytics, APM, ASM, and Link Controller 11.2.1 before HF16, 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before 11.6.1, and 12.x before 12.0.0 HF2; BIG-IP AAM, AFM, and PEM 11.4.x, 11.5.x before 11.5.4 HF2, 11.6.x before...

F5 Networks BIG-IP : BIG-IP IPsec IKE peer listener vulnerability (K10133477)

The anonymous IPsec IKE peer configuration object is present and enabled in the default configuration. The settings of the anonymous IPsec IKE peer object allow an arbitrary peer to establish IKE phase 1 without certificate validation or a pre-shared key which may expose phase 2 negotiations to a...

SOL10133477 - BIG-IP IPsec IKE peer listener vulnerability CVE-2016-5736

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

CVE-2009-0790

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

CVE-2009-0790

OpenSwan/StrongSwan pluto IKE daemon vulnerable to denial of service via crafted DPD packets (R_U_THERE, R_U_THERE_ACK) that trigger a NULL pointer dereference due to inconsistent ISAKMP/phase2 state. Affected: Openswan/Strongswan IPsec implementations listed in CVE-2009-0790 with vulnerable rang...

CVE-2004-2678

Unspecified vulnerability in HP Tru64 UNIX 5.1B PK2BL22 and PK3BL24, and 5.1A PK6BL24, when using IPsec/IKE Internet Key Exchange with Certificates, allows remote attackers to gain privileges via unknown attack vectors...

Multiple Vulnerabilities Found by PROTOS IPSec Test Suite

Multiple Cisco products contain vulnerabilities in the processing of IPSec IKE Internet Key Exchange messages. These vulnerabilities were identified by the University of Oulu Secure Programming Group OUSPG "PROTOS" Test Suite for IPSec and can be repeatedly exploited to produce a denial of servic...

IPSEC IKE check

The remote IPSEC server seems to have a problem negotiating bogus IKE requests. An attacker may use this flaw to disable your VPN remotely. OpenVAS Vulnerability Test $Id: ikecheck.nasl 8023 2017-12-07 08:36:26Z teissa $ Description: IPSEC IKE check Authors: John Lampe Script audit and...

CVE-2005-1802

Nortel VPN Router aka Contivity allows remote attackers to cause a denial of service crash via an IPsec IKE packet with a malformed ISAKMP header...