CVE-2002-1092

Cisco VPN 3000 Concentrator 3.6Rel and earlier, and 2.x.x, when configured to use internal authentication with group accounts and without any user accounts, allows remote VPN clients to log in using PPTP or IPSEC user authentication...

Multiple vendors' Internet Key Exchange (IKE) implementations do not properly handle IKE response packets

Overview Internet Key Exchange IKE implementations from several vendors contain buffer overflows and denial-of-service conditions. The buffer overflow vulnerabilities could permit an attacker to execute arbitrary code on a vulnerable system. Description The CERT/CC has received a report describin...

CVE-2002-0603

Snapgear Lite+ firewall 1.5.3 allows remote attackers to cause a denial of service IPSEC crash via a zero length packet to UDP port 500...

CVE-2002-0603

Snapgear Lite+ firewall 1.5.3 allows remote attackers to cause a denial of service IPSEC crash via a zero length packet to UDP port 500...

KPMG-2002017: Snapgear Lite+ Firewall Denial of Service

-------------------------------------------------------------------- Title: Snapgear Lite+ Firewall Denial of Service BUG-ID: 2002017 Released: 02nd May 2002 -------------------------------------------------------------------- Problem: ======== Several issues with the Snapgear Lite+ Firewall coul...

IPSEC Server ISAKMP Implementation Malformed IKE Request Remote DoS

The remote IPSEC server seems to have a problem negotiating malformed IKE requests. An attacker may use this flaw to disable your VPN remotely. Note that this plugin does not run over IPv6. This script was written by John [email protected] Script audit and contributions from Carmichael...

BSD: IPv4 forwarding doesn't consult inbound SPD in KAME-derived IPsec

IPv4 forwarding doesn't consult inbound SPD in KAME-derived IPsec Greg Troxel [email protected] Bill Chiarchiaro [email protected] 2002-02-24 SUMMARY NetBSD 1.5.2 and -current, FreeBSD 4.5 and -current, and the KAME versions of NetBSD and FreeBSD fail to perform inbound policy checks on packets...

Проблемы с KAME IPSec в *BSD (protection bypass)

Не проверяется политика для передаваемых пакетов в режиме туннелирования...

DoS против Windows 2000 при исопльзовании IPSec (IKE flood)

Большое количество IKE-пакетов UDPприводит к 99 потреблению процессорного времени...

Microsoft Windows Server 2000 - Internet Key Exchange Denial of Service (2)

Microsoft Windows Server 2000 - Internet Key Exchange Denial of Service 2 source: https://www.securityfocus.com/bid/3652/info Internet Protocol Security IPSec provides authentication and encryption for IP network traffic. The Internet Key Exchange IKE protocol is a management protocol standard...

CVE-2001-0376

CVE-2001-0376 affects SonicWALL Tele2 and SOHO firewalls running firmware 6.0.0.0 when using IPsec with IKE pre-shared keys. The root cause is that the implementation supports only 48-byte IKE PSKs instead of the full 128-byte length, reducing the effective key space. This enables a remote attack...

CVE-2001-0284

Buffer overflow in IPSEC authentication mechanism for OpenBSD 2.8 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a malformed Authentication header AH IPv4 option...

CVE-2001-0284

The CVE-2001-0284 entry describes a buffer overflow in the IPSEC authentication mechanism for OpenBSD 2.8 and earlier. The underlying issue is in the IPSEC AH (IPv4 option) processing, allowing remote attackers to cause a denial of service and potentially execute arbitrary commands via a malforme...

Cisco HSRP Weakness/DoS

Hi I was playing with Cisco's HSRP Hot Standby Routing Protocol, and there is a major weakness in that protocol that allow any host in a LAN segment to make a HSRP DoS. Short very explain of HSRP. HSRP uses UDP on port 1985 to multicast address 224.0.0.2, and the authentication is in clear text...

Nortel CES (3DES version) offers false sense of security when using IPSEC

Short summary: Nortel Networks Contivity Extranet Switch CES has a weakness in it's IPSEC key exchange when using 3DES encryption. The 3DES encryption keys are encrypted using single DES during initial key exchange thus reducing cryptographic strength to 56-bit DES level. The weakness affects bot...

CVE-2000-0962

The CVE-2000-0962 entry concerns OpenBSD 2.7 IPSEC, where the implementation mishandles empty AH/ESP packets. This underpins a denial of service when processing such packets, with an impact described as partial availability. The available sources (NVD/CVE records) repeat the same description and ...

CVE-2000-0962

The IPSEC implementation in OpenBSD 2.7 does not properly handle empty AH/ESP packets, which allows remote attackers to cause a denial of service...

Дырка в ppp в FreeBSD (nat deny_incoming)

команда nat denyincoming не работает с нестандартными типами протоколов например IPSec...

DoS против OpenBSD

Пустой пакет протоколов AH и ESP вызывает ошибку в ядре при включенной поддержке IPSec...

Nmap Protocol Scanning DoS against OpenBSD IPSEC

The protocol scanning option -sO in 2.54 Beta releases of nmap results in a remote denial of service against OpenBSD 2.7's IPSEC implementation due to its inability to handle tiny AH/ESP packets. Nmap protocol scans repeatedly cycle through IP protocol version numbers, attempting to elicit ICMP...