FreeBSD Security Advisory (FreeBSD-SA-05:19.ipsec.asc)

The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:19.ipsec.asc SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

[email protected]

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2008:181 http://www.mandriva.com/security/ Package : ipsec-tools Date : August 28, 2008 Affected: 2007.1, 2008.0, 2008.1, Corporate 4.0, Multi Network Firewall 2.0 Problem Description: Two denial of service...

ipsec-tools / racoon IPSec DoS

DoS attack with memory exhaustion...

ike-scan (NASL wrapper)

ike-scan NASL wrapper This plugin runs ike-scan to identify IPSEC VPN endpoints. It will attempt to enumerate supported cipher suites, bruteforce valid groupnames and fingerprint any endpoint identified. OpenVAS Vulnerability Test $Id: ike-scan.nasl 7153 2017-09-15 15:03:32Z cfischer $ Descriptio...

CentOS 3 / 4 / 5 : ipsec-tools (CESA-2008:0849)

An updated ipsec-tools package that fixes two security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The ipsec-tools package is used in conjunction with the IPsec functionalit...

RHEL 3 / 4 / 5 : ipsec-tools (RHSA-2008:0849)

An updated ipsec-tools package that fixes two security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The ipsec-tools package is used in conjunction with the IPsec functionalit...

ipsec security update

CentOS Errata and Security Advisory CESA-2008:0849 An updated ipsec-tools package that fixes two security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The ipsec-tools package...

IPSec ESP kernel panics

The IPsec implementation in Linux kernel before 2.6.25 allows remote routers to cause a denial of service crash via a fragmented ESP packet in which the first fragment does not contain the entire ESP header and IV...

Important: Red Hat Security Advisory: kernel security and bug fix update

Updated kernel packages that fix several security issues and several bugs are now available for Red Hat Enterprise MRG 1.0. This update has been rated as having important security impact by the Red Hat Security Response Team. The kernel packages contain the Linux kernel, the core of any Linux...

ipsec-tools: racoon orphaned ph1s memory leak

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" phase 1 handle when it has been initiated remotely, which allows remote attackers to cause a denial of service resource consumption...

Important: Red Hat Security Advisory: ipsec-tools security update

An updated ipsec-tools package that fixes two security issues is now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. The ipsec-tools package is used in conjunction with the IPsec functionalit...

ipsec-tools: racoon memory leak caused by invalid proposals

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service memory consumption via invalid proposals...

ipsec-tools security update

0.6.5-9.3 - fix for DoS through various memory leaks CVE-2008-3651 456660, CVE-2008-3652 458846...

Linux kernel multiple security vulnerabilities

IPSec ESP pacjet parsing DoS, multiple local DoS conditions, kernel memory data leak, privilege escalation...

DSA-1630-1 fai-kernels linux-2.6 user-mode-linux - several vulnerabilities

Bulletin has no description...

Microsoft Windows IPsec信息泄露漏洞（MS08-047）

BUGTRAQ ID: 30634 CVECAN ID: CVE-2008-2246 Microsoft Windows是微软发布的非常流行的操作系统。 在从Windows Server 2003域向Windows Server 2008域导入IPsec策略时，系统可能会忽略IPsec策略，这样会以明文传输本应加密的数据。导致泄露在网络上本应被加密的信息，查看网络通讯的攻击者能够查看并且可能修改通讯的内容。请注意此漏洞不允许攻击者直接执行代码或提升他们的用户权限，但可能用于收集有用的信息，从而试图进一步入侵受影响的系统或网络。 Microsoft Windows Vista SP1...

CVE-2008-3651

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service memory consumption via invalid proposals...

Memory corruption

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service memory consumption via invalid proposals...

CVE-2008-3652

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" phase 1 handle when it has been initiated remotely, which allows remote attackers to cause a denial of service resource consumption...

CVE-2008-3651

Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service memory consumption via invalid proposals...