CVE-2008-1198

The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key PSK hash...

Microsoft Windows活动目录LDAP请求验证远程拒绝服务漏洞（MS08-003）

BUGTRAQ ID: 27638 CVECAN ID: CVE-2008-0088 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统的LDAP服务实现上存在漏洞，远程攻击者可能利用此漏洞导致服务不可用。 由于没有正确地验证特制的LDAP请求，Microsoft Windows 2000和Windows Server 2003上的活动目录实现存在拒绝服务漏洞；此外Windows XP和Windows Server 2003上所安装的活动目录应用模式（ADAM）实现也存在这个漏洞。成功利用这个漏洞的攻击者可能导致计算机停止响应并自动重启。...

KAME Project IPv6 IPComp头远程拒绝服务漏洞

BUGTRAQ ID: 27642 CVECAN ID: CVE-2008-0177 KAME项目是6家日本公司协作为各种BSD系统所提供的免费IPv6、IPsec和Mobile IPv6实现。 KAME项目实现的IPv6协议栈存在漏洞，远程攻击者可能利用此漏洞导致服务器不可用。 如果BSD系统使用了KAME项目的IPv6实现的话，则在处理有IPComp头的IPv6报文时kame/sys/netinet6/ipcompinput.c文件的ipcomp6input函数会出现空指针引用。如果将内核配置为处理IPsec和IPv6通讯的话，单个特制的IPv6报文可能导致内核忙碌。 FreeBSD...

FreeBSD Security Advisory FreeBSD-SA-08:04.ipsec

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-08:04.ipsec Security Advisory The FreeBSD Project Topic: IPsec null pointer dereference panic Category: core Module: ipsec Announced: 2008-02-14 Credits: Takashi...

FreeBSD IPSec DoS

NULL pointer dereference on IPSec packet parsing...

FreeBSD-SA-08:04.ipsec

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ============================================================================= FreeBSD-SA-08:04.ipsec Security Advisory The FreeBSD Project Topic: IPsec null pointer dereference panic Category: core Module: ipsec Announced: 2008-02-14 Credits: Takashi...

openSUSE 10 Security Update : novell-ipsec-tools (novell-ipsec-tools-4655)

This update fixes a security problem in novell-ipsec-tools : CVE-2007-1841: Fix a DoS in isakmpinforecv and also a non-security bug with a crash in GSSAPI. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...

Memory corruption

Cisco Systems VPN Client IPSec Driver CVPNDRVA.sys 5.0.02.0090 allows local users to cause a denial of service crash by calling the 0x80002038 IOCTL with a small size value, which triggers memory corruption...

CVE-2008-0324

Cisco Systems VPN Client IPSec Driver CVPNDRVA.sys 5.0.02.0090 allows local users to cause a denial of service crash by calling the 0x80002038 IOCTL with a small size value, which triggers memory corruption...

Debian Security Advisory DSA 201-1 (freeswan)

The remote host is missing an update to freeswan announced via advisory DSA 201-1. OpenVAS Vulnerability Test $Id: deb2011.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 201-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian Security Advisory DSA 965-1 (ipsec-tools)

The remote host is missing an update to ipsec-tools announced via advisory DSA 965-1. The Internet Key Exchange version 1 IKEv1 implementation in racoon from ipsec-tools, IPsec tools for Linux, try to dereference a NULL pointer under certain conditions which allows a remote attacker to cause a...

Debian Security Advisory DSA 1299-1 (ipsec-tools)

The remote host is missing an update to ipsec-tools announced via advisory DSA 1299-1. OpenVAS Vulnerability Test $Id: deb12991.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1299-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

Debian: Security Advisory (DSA-965-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian: Security Advisory (DSA-1299-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Cisco VPN Client IPSec Driver Local kernel system pool Corruption PoC

Exploit for unknown platform in category dos / poc ===================================================================== Cisco VPN Client IPSec Driver Local kernel system pool Corruption PoC ===================================================================== / cpndrv-dos.c Copyright c 2008 by...

Cisco VPN Client - IPSec Driver Local kernel system pool Corruption (PoC)

Cisco VPN Client - IPSec Driver Local kernel system pool Corruption PoC / cpndrv-dos.c Copyright c 2008 by Cisco Systems VPN Client IPSec Driver local kernel system pool corruption POC by mu-b - Sat 11 Jan 2008 - Tested on: CVPNDRVA.sys 5.0.02.0090 specifying an input buffer size less-than...

Cisco VPN Client - IPSec Driver Local kernel system pool Corruption (PoC)

/ cpndrv-dos.c Copyright c 2008 by Cisco Systems VPN Client IPSec Driver local kernel system pool corruption POC by mu-b - Sat 11 Jan 2008 - Tested on: CVPNDRVA.sys 5.0.02.0090 specifying an input buffer size less-than 8+31-bytes results in the local kernel non-paged pool METHODBUFFERED being...

Cisco VPN Client IPSec Driver Local kernel system pool Corruption PoC

No description provided by source. / cpndrv-dos.c Copyright c 2008 by [email protected] Cisco Systems VPN Client IPSec Driver local kernel system pool corruption POC by mu-b - Sat 11 Jan 2008 - Tested on: CVPNDRVA.sys 5.0.02.0090 specifying an input buffer size less-than 8+31-bytes results in t...

SuSE 10 Security Update : Recommended update for novell-ipsec-tools (ZYPP Patch Number 4656)

This update fixes a segfault in the GSSAPI initialization. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29961; scriptversion"1.13";...

SuSE 10 Security Update : ipsec-tools (ZYPP Patch Number 3099)

A bug in the IKE daemon 'racoon' allowed remote attackers shut down established tunnels. CVE-2007-1841 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid29466;...