InGate Firewall和SIParator多个安全漏洞

BUGTRAQ ID: 34309 Ingate Firewall和SIParator都是企业级的硬件防火墙设备。 Ingate Firewall和SIParator中存在多个安全漏洞，恶意用户可以利用这些漏洞执行欺骗攻击、绕过某些安全限制或导致拒绝服务。 1 如果将IPsec隧道将远程网络设置为允许“Remote/private address”配置单元，就可能允许任意用户配置单元。 2 IDS/IPS实现中的错误可能允许SIP报文绕过欺骗和IPsec检查。 3 验证DSA和ECDSA密钥签名中的错误可能导致伪造服务器证书。 4 验证HMAC...

CVE-2009-0790

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

Null pointer dereference

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

CVE-2009-0790

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

CVE-2009-0790

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

CVE-2009-0790

OpenSwan/StrongSwan pluto IKE daemon vulnerable to denial of service via crafted DPD packets (R_U_THERE, R_U_THERE_ACK) that trigger a NULL pointer dereference due to inconsistent ISAKMP/phase2 state. Affected: Openswan/Strongswan IPsec implementations listed in CVE-2009-0790 with vulnerable rang...

CVE-2009-0790

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service daemon crash and restart via a crafted 1 RUTHERE or 2 RUTHEREACK Dead Peer Detection DPD IPsec...

Openswan和strongSwan DPD报文远程拒绝服务漏洞

BUGTRAQ ID: 34296 CVECAN ID: CVE-2009-0790 Openswan和strongSwan都是Linux系统下的IPSEC实现。 死亡对等体检测（DPD）是IPsec IKE通知消息，使用ICOOKIE/RCOOKIE机制将入站报文匹配到已知的安全关联（ISAKMP）。在一个端点的ISAKMP状态已过期但另一个端点仍在使用旧状态发送DPD通知的情况下，如果远程攻击者向Openswan和strongSwan发送了恶意的RUTHERE或 RUTHEREACK通知报文的话，就会在不存在的状态对象st上触发空指针引用，导致pluto IKE守护程序崩溃并重启。...

RHEL 5 : openswan (RHSA-2009:0402)

The remote Redhat Enterprise Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2009:0402 advisory. Openswan is a free implementation of Internet Protocol Security IPsec and Internet Key Exchange IKE. IPsec uses strong cryptography to provi...

[SECURITY] [DSA 1760-1] New openswan packages fix denial of service

------------------------------------------------------------------------ Debian Security Advisory DSA-1760-1 [email protected] http://www.debian.org/security/ Steffen Joeris March 30, 2009 http://www.debian.org/security/faq -...

openswan: Insecure auxiliary /tmp file usage (symlink attack possible)

The IPSEC livetest tool in Openswan 2.4.12 and earlier, and 2.6.x through 2.6.16, allows local users to overwrite arbitrary files and execute arbitrary code via a symlink attack on the 1 ipseclive.conn and 2 ipsec.olts.remote.log temporary files. NOTE: in many distributions and the upstream...

Important: Red Hat Security Advisory: openswan security update

Updated openswan packages that fix various security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having important security impact by the Red Hat Security Response Team. Openswan is a free implementation of Internet Protocol Security IPsec and Internet Key...

DSA-1760-1 openswan - denial of service

Bulletin has no description...

DSA-1759-1 strongswan - denial of service

Bulletin has no description...

Ubuntu Update for ipsec-tools vulnerability USN-450-1

Ubuntu Update for Linux kernel vulnerabilities USN-450-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4501.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ipsec-tools vulnerability USN-450-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu Update for ipsec-tools vulnerabilities USN-641-1

Ubuntu Update for Linux kernel vulnerabilities USN-641-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6411.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for ipsec-tools vulnerabilities USN-641-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu: Security Advisory (USN-641-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu: Security Advisory (USN-450-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Openswan: Insecure temporary file creation

Background Openswan is an implementation of IPsec for Linux. Description Dmitry E. Oboukhov reported that the IPSEC livetest tool does not handle the ipseclive.conn and ipsec.olts.remote.log temporary files securely. Impact A local attacker could perform symlink attacks to execute arbitrary code...

RedHat Update for ipsec-tools RHSA-2008:0849-01

Check for the Version of ipsec-tools OpenVAS Vulnerability Test RedHat Update for ipsec-tools RHSA-2008:0849-01 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...