Code injection

Cisco IOS allows remote authenticated users to cause a denial of service device reload via malformed IPsec packets, aka Bug ID CSCui79745...

CVE-2014-3299

Cisco IOS allows remote authenticated users to cause a denial of service device reload via malformed IPsec packets, aka Bug ID CSCui79745...

CVE-2014-3299

CVE-2014-3299 affects Cisco IOS/IPsec processing where malformed IPsec packets trigger a denial-of-service (device reload). It requires authentication and is caused by improper handling of IPsec packets. Cisco’s advisory indicates software updates addressing this in fixed releases; remediation is...

[SECURITY] [DSA 2922-1] strongswan security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2922-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez May 05, 2014 http://www.debian.org/security/faq -...

Debian Security Advisory DSA 2922-1 (strongswan - security update)

A vulnerability has been found in the ASN.1 parser of strongSwan, an IKE/IPsec suite used to establish IPsec protected links. By sending a crafted IDDERASN1DN ID payload to a vulnerable pluto or charon daemon, a malicious remote user can provoke a null pointer dereference in the daemon parsing th...

DSA-2922-1 strongswan - security update

Bulletin has no description...

Fedora Update for strongswan FEDORA-2014-5231

Check for the Version of strongswan OpenVAS Vulnerability Test Fedora Update for strongswan FEDORA-2014-5231 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Fedora Update for strongswan FEDORA-2014-5238

Check for the Version of strongswan OpenVAS Vulnerability Test Fedora Update for strongswan FEDORA-2014-5238 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

Juniper Networks Junos OS DoS Vulnerability (JSA10620)

Juniper Networks Junos OS is prone to a denial of service DoS vulnerability for new dynamic VPN connections. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

[SECURITY] Fedora 19 Update: strongswan-5.1.3-1.fc19

The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key exchange protocols in conjunction with the native NETKEY IPsec stack of the Linux kernel...

[SECURITY] Fedora 20 Update: strongswan-5.1.3-1.fc20

The strongSwan IPsec implementation supports both the IKEv1 and IKEv2 key exchange protocols in conjunction with the native NETKEY IPsec stack of the Linux kernel...

CVE-2012-5032

The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.11SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the discarding of this traffic, by arranging for an...

strongSwan IKEv2 SA验证绕过漏洞

CVE ID:CVE-2014-2338 strongSwan是一个完整的2.4和2.6的Linux内核下的IPsec和IKEv1的实现。它也完全支持新的IKEv2协议的Linux2.6内核。 strongSwan处理IKEv2 SA存在安全漏洞，允许远程攻击者利用漏洞绕过验证，进行授权访问。仅安装actively initiate或re-authenticate IKEv2 IKESAs的系统受此漏洞影响。 0 strongSwan 4.x strongSwan 5.x strongSwan 5.1.3版本已修复该漏洞，建议用户下载使用： http://strongswan.org...

Design/Logic Flaw

Unspecified vulnerability in Juniper Junos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when Dynamic IPsec VPN is configured, allows remote attackers to cause a denial of service new Dynamic...

CVE-2014-0612

Unspecified vulnerability in Juniper Junos before 11.4R10-S1, before 11.4R11, 12.1X44 before 12.1X44-D26, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, and 12.1X46 before 12.1X46-D10, when Dynamic IPsec VPN is configured, allows remote attackers to cause a denial of service new Dynamic...

CVE-2014-0612

CVE-2014-0612 affects Juniper Junos OS when Dynamic IPsec VPN is enabled. A DoS condition allows remote attackers to cause new Dynamic VPN connections to fail and to induce high CPU/disk usage. Affected Junos versions include 11.4R10-S1, 11.4R11, 12.1X44 pre-D26 and pre-D30, 12.1X45 pre-D20, and ...

Juniper Junos SRX Series Dynamic IPsec VPN DoS (JSA10620)

According to its self-reported version number, the remote Juniper Junos device is affected by a denial of service vulnerability related to the Dynamic IPsec VPN service. A remote, unauthenticated attacker can exploit this vulnerability to cause new Dynamic VPN connections to fail for other users ...

[SECURITY] [DSA 2893-1] openswan security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2893-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 31, 2014 http://www.debian.org/security/faq -...

[SECURITY] [DSA 2893-1] openswan security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2893-1 [email protected] http://www.debian.org/security/ Yves-Alexis Perez March 31, 2014 http://www.debian.org/security/faq -...

PlRPC: Arbitrary code execution

Background The Perl RPC Module is a Perl module that implements IDL-free RPCs. Description PlRPC uses Storable module for serialization and deserialization of untrusted data. Deserialized data can contain objects which can lead to loading of foreign modules, and possible execution of arbitrary...