Ubuntu 5.10 / 6.06 LTS / 6.10 : ipsec-tools vulnerability (USN-450-1)

A flaw was discovered in the IPSec key exchange server 'racoon'. Remote attackers could send a specially crafted packet and disrupt established IPSec tunnels, leading to a denial of service. Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu...

Guidance EnCase Enterprise uses weak authentication to identify target machines

Overview Guidance Software's EnCase Enterprise uses IP authentication to identify target machines. An attacker may be able to provide the EnCase SAFE server with a disk image from a different machine than an investigator requested. Description Guidance Software's EnCase Enterprise allows...

openSUSE 10 Security Update : ipsec-tools (ipsec-tools-3098)

A bug in the IKE daemon 'racoon' allowed remote attackers shut down established tunnels CVE-2007-1841. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update ipsec-tools-3098. The text description of...

Microsoft Windows RPC认证远程拒绝服务漏洞（MS07-058）

BUGTRAQ ID: 25974 CVECAN ID: CVE-2007-2228 Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统在处理RPC认证时存在漏洞，远程攻击者可能利用此漏洞导致系统拒绝服务。 漏洞具体存在于RPC运行时库rpcrt4.dll解析RPC级认证消息期间。在解析认证类型为NTLMSSP且认证级别为PACKET的报文时，如果验证尾部签名被初始化为0而不是标准的NTLM签名，就会出现无效的内存引用。成功利用这个漏洞可能导致RPC服务及整个操作系统崩溃。 Microsoft Windows XP SP2 Microsoft...

Teach you to kill on the server the ICS firewall-vulnerability warning-the black bar safety net

Now more and more servers using the ICS Firewall, with ipsec to manage the remote login and port security Engage in really want a world without black. Many server directly down but not on the 3 3 8 9, carefully complete analysis didn't find what firewall or fresh software, the ipsec service is...

Fedora Core 6 : ipsec-tools-0.6.5-8.fc6 (2007-665)

Mon Apr 23 2007 Steve Grubb - 0.6.5-8 - Upstream fix for Racoon DOS, informational delete must be encrypted - Resolves: rhbz235388 - CVE-2007-1841 ipsec-tools racoon DoS - Fri Apr 20 2007 Steve Grubb - 0.6.5-7 - Resolves: 218386 labeled ipsec does not work over loopback - Mon Apr 16 2007 Steve...

[SECURITY] Fedora Core 6 Update: ipsec-tools-0.6.5-8.fc6

This is the IPsec-Tools package. You need this package in order to really use the IPsec functionality in the linux-2.5+ kernels. This package builds: - setkey, a program to directly manipulate policies and SAs - racoon, an IKEv1 keying daemon...

Windows平台的Cisco VPN客户端多个本地权限提升漏洞

BUGTRAQ ID: 25332 Cisco VPN客户端允许用户创建到支持Cisco VPN设备的IPSec VPN隧道。 Microsoft Windows的Cisco VPN客户端中存在两个漏洞，允许本地非特权用户提升权限。 1. 通过Microsoft Windows拨号网络接口的本地权限提升 非特权用户可以通过启用Start Before Logon（SBL）功能并配置VPN配置使用Microsoft拨号网络接口将权限提升到LocalSystem帐号用户的权限。如果同时启用并配置了这两个设置，就可以在Windows登录窗口中使用Cisco...

Cisco IOS Next Hop Resolution Protocol (NHRP) - Denial of Service

// / / / nhrp-dos - Copyright by Martin Kluge, / / / / Feel free to modify this code as you like, as long as you include the / / above copyright statement. / / / / Please use this code only to check your OWN cisco routers. / / / / Cisco bug ID: CSCin95836 / / / / The Next-Hop-Resolution Protocol...

Cisco IOS Next Hop Resolution Protocol (NHRP) - Denial of Service

Cisco IOS Next Hop Resolution Protocol NHRP - Denial of Service // / / / nhrp-dos - Copyright by Martin Kluge, / / / / Feel free to modify this code as you like, as long as you include the / / above copyright statement. / / / / Please use this code only to check your OWN cisco routers. / / / /...

[Full-disclosure] Cisco NHRP denial of service (cisco-sa-20070808-nhrp)

Hi, this exploit/DoS addresses the recent NHRP bug in Cisco IOS CSCin95836 / cisco-sa-20070808-nhrp. The original advisory can be found here: http://www.cisco.com/en/US/products/productssecurityadvisory09186a008089963b.shtml Exploit/DoS: // / / / nhrp-dos - Copyright by Martin Kluge, [email protected] ...

Microsoft Windows活动目录LDAP请求验证远程拒绝服务漏洞（MS07-039）

BUGTRAQ ID: 24796 CVECAN ID: CVE-2007-3028 Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft活动目录在处理畸形的请求数据时存在漏洞，远程攻击者可能利用此漏洞导致服务不可用。 Microsoft活动目录没有正确地验证LDAP请求中可转换属性的数量，攻击者可能通过向运行活动目录的服务器发送特制的LDAP请求来利用该漏洞，成功利用此漏洞的攻击者可能导致服务器暂时停止响应。 Microsoft Windows 2000 Server SP4 临时解决方法： 在防火墙处阻止TCP端口389和3268。...

Moderate: ipsec-tools security update

0.6.5-8 - Upstream fix for Racoon DOS, informational delete must be encrypted - Resolves: rhbz235388 - CVE-2007-1841 ipsec-tools racoon DoS 0.6.5-7 - Resolves: 218386 labeled ipsec does not work over loopback 0.6.5-6.6 - Related: 232508 add auditing to racoon 0.6.5-6.5 - Resolves: 235680 racoon...

CVE-2007-3248

Unspecified vulnerability in Sun Solaris 10 before 20070614, when IPv6 interfaces are present but not configured for IPsec, allows remote attackers to cause a denial of service system crash via certain network traffic...

CVE-2007-3248

CVE-2007-3248 affects Sun Solaris 10 before 20070614. When IPv6 interfaces are present but not configured for IPsec, remote attackers can cause a denial of service (system crash) via certain network traffic. CVSS2 base score 7.8 (NETWORK, LOW complexity, NO authentication). No explicit remediatio...

Sun Solaris远程IPv6 IPSec报文拒绝服务漏洞

Sun Solaris是一款商业性质的操作系统。 配置了使用IPv6 ip67p但没有使用IPsec stack ipsec7P的Solaris系统不正确处理恶意报文，远程攻击者可以利用漏洞对系统进行拒绝服务攻击。 目前没有详细漏洞细节提供。 Sun Solaris 10x86 Sun Solaris 10 http://sunsolve.sun.com/search/document.do?assetkey=1-26-102919-1&searchclause=...

Debian DSA-1299-1 : ipsec-tools - missing input sanitising

It was discovered that a specially crafted packet sent to the racoon ipsec key exchange server could cause a tunnel to crash, resulting in a denial of service. The oldstable distribution sarge isn't affected by this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive tex...

[SECURITY] [DSA 1299-1] New ipsec-tools packages fix denial of service

--------------------------------------------------------------------------- Debian Security Advisory DSA 1299-1 [email protected] http://www.debian.org/security/ dann frazier June 7th, 2007 http://www.debian.org/security/faq -...

DSA-1299-1 ipsec-tools

Bulletin has no description...

RHEL 5 : ipsec-tools (RHSA-2007:0342)

Updated ipsec-tools packages that fix a denial of service flaw in racoon are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The ipsec-tools package is used in conjunction with the IPsec functionali...