6 matches found
CVE-2016-10396
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The implementation permits a remote attacker to exhaust computational resources on the remote endpoint by repeatedly sending ISAKMP fragment packets in...
CVE-2016-10396
Removed by vendor...
Null pointer dereference
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service NULL pointer dereference and IKE daemon crash via a series of crafted UDP requests...
CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service NULL pointer dereference and IKE daemon crash via a series of crafted UDP requests...
CVE-2015-4047
The CVE-2015-4047 vulnerability affects ipsec-tools, specifically the racoon daemon's code path in racoon/gssapi.c. A remote attacker can send crafted UDP requests to trigger a NULL pointer dereference, causing the IKE daemon to crash and resulting in DoS. The issue is associated with IPsec-Tools...
CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service NULL pointer dereference and IKE daemon crash via a series of crafted UDP requests...