CVE-2004-2678

Unspecified vulnerability in HP Tru64 UNIX 5.1B PK2BL22 and PK3BL24, and 5.1A PK6BL24, when using IPsec/IKE Internet Key Exchange with Certificates, allows remote attackers to gain privileges via unknown attack vectors...

CVE-2004-2678

Technical details about CVE-2004-2678 are not publicly available in the provided documents. No explicit affected products, versions, or impact are documented here. Monitor for updates from official sources.

MDKA-2006:034 : ipsec-tools

IPsec-Tools1 is a port of KAME's IPsec utilities to the Linux-2.6 IPsec implementation. This update fixes a few issues and introduces new functionalities to the package provided for Mandriva 2006 users: - fixed tunnel mode connection 19460 2 - fixed GSSAPI build - version update: 0.6.6 - enabled...

Microsoft Windows Workstation服务NetpManageIPCConnect远程栈溢出漏洞（MS06-070)

Microsoft Windows是微软发布的非常流行的操作系统。 Windows的Workstation服务组件中存在栈溢出漏洞，远程攻击者可能利用此漏洞在服务器上执行任意指令。 在Workstation服务名为wkssvc.dll的模块中，NetpManageIPCConnect函数以未经检查的缓冲区数据调用了swprintf，而输入缓冲区是远程攻击者可控的。 .text:76781D67 mov edi, ebp+arg0 ... .text:76781D90 lea eax, ebp+var2CC ... .text:76781DA0 push edi .text:76781DA...

OpenBSD ISAKMPD IPsec通信会话回放漏洞

OpenBSD是一款开放源代码Unix类操作系统。 OpenBSD的isakmpd工具在处理通信会话时存在漏洞，远程攻击者可能利用此漏洞执行消息回放攻击。 如果在SA协商期间OpenBSD将isakmpd8用作响应程序的话，则在响应SA协商时isakmpd8就会创建一个大小为0的回放窗口，这样攻击者就可以截获并回放IPSec报文。漏洞的具体影响取决于所回放的网络通讯。 OpenBSD OpenBSD 3.9 OpenBSD OpenBSD 3.8 OpenBSD ------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载：...

Microsoft Windows MSDTC无效内存访问拒绝服务漏洞（MS06-018）

Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统的MSDTC处理某些畸形DCE-RPC请求时存在内存分配漏洞，远程攻击者可能利用此漏洞对服务器执行拒绝服务攻击。 MS05-051中所述的MSDTC RPC漏洞利用的是MSDTCPRX.DLL中MIDLuserallocate函数实现内存管理器的方式。该函数接收任何分配大小，但最多只能分配4KB的内存。然后RPCRT4会试图将管理数据储存到memory address + requested size，这就可能导致修改任意内存，因为任意大小的分配尝试都会成功，但所保留的内存最多只有4KB。...

Microsoft Windows MSDTC堆溢出漏洞（MS06-018）

Microsoft Windows是微软发布的非常流行的操作系统。 Windows系统的MSDTC进程处理畸形的DCE-RPC请求时存在漏洞，远程攻击者可能利用此漏洞对服务器执行拒绝服务攻击。 在MSDTC.EXE进程中MSDTCPRX.DLL起到了RPC Server的作用，使用动态TCP端口做为其RPC端点，906B0CE0-C70B-1067-B317-00DD010662DA...

Microsoft Windows路由和远程访问服务溢出漏洞（MS06-025）

Microsoft Windows是微软发布的非常流行的操作系统。 远程攻击者可以通过特制的RPC请求触发Microsoft Windows路由和远程访问服务（RRAS）中的缓冲区溢出，导致执行任意指令。 Microsoft Windows XP SP2 Microsoft Windows XP SP1 Microsoft Windows Server 2003 SP1 Microsoft Windows Server 2003 Microsoft Windows 2000 临时解决方法： 禁用远程访问连接管理器服务。 在防火墙阻断：...

Microsoft Windows RASMAN服务栈溢出漏洞（MS06-025）

Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows远程访问连接管理器RASMAN存在可远程调用的RPC接口，其中RPC接口 RasRpcSubmitRequest存在若干安全漏洞，远程攻击者可能利用此漏洞在服务器上执行任意指令。 函数RasRpcSubmitRequest及其子函数对作为参数的函数指针的有效性检查不足；某些子函数对参数的处理存在缓冲区溢出漏洞；这些漏洞都可能被攻击者利用在服务器上执行任意指令，从而控制系统。 Microsoft Windows XP SP2 Microsoft Windows XP SP1 Microso...

Wireshark多个协议处理单元安全漏洞

Wireshark是一款非常流行的网络协议分析工具,以前名为Ethereal，。 Wireshark中存在多个安全漏洞，具体如下： 1 SCSI协议处理单元中的漏洞可能导致应用程序崩溃； 2 如果编译了ESP解密支持的话，IPSec ESP偏好解析器中就会存在单字节缓冲区溢出漏洞； 3 由于Glib中的一个bug，DHCP协议处理单元中的漏洞可能导致Wireshark崩溃。这个漏洞仅影响Windows版本； 4 Q.2391协议处理单元中的漏洞可能导致耗尽内存。 受影响系统： Wireshark Wireshark 0.7.9 - 0.99.2 不受影响系统： Wireshark...

Microsoft Windows TCP/IP协议栈ICMP重置TCP连接漏洞(MS05-19/MS06-064)

Microsoft Windows是微软发布的非常流行的操作系统。 Microsoft Windows的TCP/IP协议栈的ICMP协议处理模块存在漏洞，远程攻击者可能利用此漏洞重置服务器的TCP连接。 Microsoft Windows的ICMP协议处理模块没有充分检查某些类型ICMP消息的合法性，远程攻击者可以向受影响的服务器发送特制的ICMP消息导致服务器和客户端之间的已有TCP连接被重置。 Microsoft Windows 2000 SP4 Microsoft Windows 2000 SP3 Microsoft Windows XP SP2 Microsoft Windows...

Wireshark contains multiple off-by-one errors in the IPSec ESP preference parser

Overview Wireshark contains a vulnerability in the IPSec ESP preference parser that may cause a denial of service condition. Description Wireshark contains multiple off-by-one vulnerabilities in the IPSec ESP preference parser when the application has been compiled with ESP decryption support.Thi...

Debian DSA-965-1 : ipsec-tools - null dereference

The Internet Key Exchange version 1 IKEv1 implementation in racoon from ipsec-tools, IPsec tools for Linux, try to dereference a NULL pointer under certain conditions which allows a remote attacker to cause a denial of service. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive...

CVE-2006-5286

Unspecified vulnerability in IKE.NLM in Novell BorderManager 3.8 allows attackers to cause a denial of service crash via unknown attack vectors related to "VPN issues" for certain "IKE and IPsec settings."...

CVE-2006-5286

Technical details for CVE-2006-5286 are not publicly provided in the connected documents. The sources summarize an unspecified DoS risk in Novell BorderManager 3.8 related to VPN/IKE/IPsec settings, but no concrete vulnerability specifics are included here. Monitor for updates.

CVE-2006-5286

Unspecified vulnerability in IKE.NLM in Novell BorderManager 3.8 allows attackers to cause a denial of service crash via unknown attack vectors related to "VPN issues" for certain "IKE and IPsec settings."...

CVE-2006-5201

Multiple packages on Sun Solaris, including 1 NSS; 2 Java JDK and JRE 5.0 Update 8 and earlier, SDK and JRE 1.4.x up to 1.4.212, and SDK and JRE 1.3.x up to 1.3.119; 3 JSSE 1.0.303 and earlier; 4 IPSec/IKE; 5 Secure Global Desktop; and 6 StarOffice, when using an RSA key with exponent 3, removes...

CVE-2006-5201

CVE-2006-5201 affects Sun Solaris components (notably NSS, NSS-based libraries, Java JDK/JRE, JSSE, IPSec/IKE, and related Sun products). The root cause is when using an RSA key with exponent 3 that removes PKCS #1 padding prior to hash generation, enabling remote attackers to forge a PKCS #1 v1....

The latest MS06040 exploits-vulnerability warning-the black bar safety net

| Latest MS06040 exploits Microsoft Windows Server service remote buffer overflow vulnerability MS06-0 4 0 Released Do not irrigate. Otherwise deletes the ID...date: 2006-08-08 Update Do not irrigate. Otherwise deletes the ID...date: 2006-08-09 Affected system: Microsoft Windows XP SP2 Microsoft...

SIP over TLS: X.509 peer authentication vulnerability in Ingate products

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 SIP over TLS: X.509 peer authentication vulnerability in Ingate products ======================================================================== Product: Ingate Firewall and Ingate SIParator Versions: all current versions Tracking ID: 2829 Summary...