SuSE 10 Security Update : Novell ipsec tools (ZYPP Patch Number 6306)

This update of ipsec-tools fixes a crash of racoon in ISAKMP's de-fragmentation code due to a NULL pointer dereference. CVE-2009-1574 Additionally multiple memory leaks were fixed that allowed to execute a remote denial of service attack. CVE-2009-1632 %NASLMINLEVEL 70300 C Tenable Network...

SuSE 10 Security Update : novell-ipsec (ZYPP Patch Number 5888)

Remote attackers could exploit memory leaks in the 'racoon' daemon to crash it. CVE-2008-3651 / CVE-2008-3652 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

Code injection

Unspecified vulnerability on Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.32 allows remote attackers to cause a denial of service device crash via a large number of LAN-to-LAN aka L2L IPsec sessions, aka Bug ID CSCth36592...

CVE-2010-4692

CVE-2010-4692 affects Cisco ASA 5500-series devices running software before 8.3(2). The vulnerability allows a remote attacker to cause a denial-of-service (device crash) by initiating a large number of LAN-to-LAN IPsec sessions (L2L), per Bug ID CSCth36592. Affected component is the IPsec/L2L ha...

CVE-2010-4676

Unspecified vulnerability on Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 allows remote authenticated users to cause a denial of service device crash via a high volume of IPsec traffic, aka Bug ID CSCsx52748...

Code injection

Unspecified vulnerability on Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 allows remote authenticated users to cause a denial of service device crash via a high volume of IPsec traffic, aka Bug ID CSCsx52748...

CVE-2010-4676

Cisco ASA 5500 series devices running software before 8.2(3) are affected by CVE-2010-4676. The issue allows remote authenticated users to cause a denial of service (device crash) by sending a high volume of IPsec traffic, identified as Bug ID CSCsx52748. The PT-2011-1631 entry confirms the vulne...

CVE-2010-4676

Unspecified vulnerability on Cisco Adaptive Security Appliances ASA 5500 series devices with software before 8.23 allows remote authenticated users to cause a denial of service device crash via a high volume of IPsec traffic, aka Bug ID CSCsx52748...

Microsoft Windows IPsec Policy Processing Information Disclosure Vulnerability (953733)

This host is missing a critical security update according to Microsoft Bulletin MS08-047. OpenVAS Vulnerability Test $Id: gbms08-047.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows IPsec Policy Processing Information Disclosure Vulnerability 953733 Authors: Madhuri D Copyright: Copyrig...

Microsoft Windows IPsec Policy Processing Information Disclosure Vulnerability (953733)

This host is missing a critical security update according to Microsoft Bulletin MS08-047. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

Experts: OpenBSD Backdoor Allegations 'Almost Certainly False'

The incredible allegations that developers working under the auspices of the FBI and Justice Department planted a backdoor in the IPSec stack of the OpenBSD operating system are likely just that, experts say: not credible. “There is no way that the FBI paid anyone to create backdoors in OpenBSD a...

NGS00014 Patch Notification: Cisco IPSec VPN Implementation Group Name Enumeration

Cisco IPSec VPN Implementation Group Name Enumeration 01/12/2010 Gavin Jones of NGS Secure has discovered a vulnerability in Cisco Cisco VPN Concentrator, Cisco PIX and Cisco Adaptive Security Appliance. Versions affected include: -Cisco ASA 5500 Series Adaptive Security Appliances -Cisco PIX 500...

Cisco IPSec information leakage

It's possible to enumerate group names...

Fedora Update for openswan FEDORA-2010-15381

Check for the Version of openswan OpenVAS Vulnerability Test Fedora Update for openswan FEDORA-2010-15381 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Design/Logic Flaw

The remote-access IPSec VPN implementation on Cisco Adaptive Security Appliances ASA 5500 series devices, PIX Security Appliances 500 series devices, and VPN Concentrators 3000 series devices responds to an Aggressive Mode IKE Phase I message only when the group name is configured on the device,...

CVE-2010-4354

The CVE covers a vulnerability in Cisco VPN products where remote attackers could enumerate valid VPN group names by sending an IKE Aggressive Mode packet with the group name in the ID field. Affected devices include ASA 5500 series, PIX 500 series, and VPN Concentrators 3000 series. Root cause i...

RHEL 6 : openswan (RHSA-2010:0892)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2010:0892 advisory. Openswan is a free implementation of Internet Protocol Security IPsec and Internet Key Exchange IKE. IPsec uses strong cryptography to provi...

Moderate: Red Hat Security Advisory: openswan security update

Updated openswan packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, ar...

StrongSwan v4.5.0 - New Version

Our first post regarding strongSwan can be found here. Now, an update has been released – strongSwan v4.5.0. "strongSwan is an OpenSource IPsec implementation for the Linux operating system. It is based on the discontinued FreeS/WAN project and the X.509 patch which we developped over the last...

Fedora Update for openswan FEDORA-2010-15508

Check for the Version of openswan OpenVAS Vulnerability Test Fedora Update for openswan FEDORA-2010-15508 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...