4 matches found
EUVD-2002-2118
Malware in sbrugna...
KAME IKE Daemon (racoon) INITIAL_CONTACT Improper Handling (CVE-2004-0164)
Racoon is an Internet Key Exchange IKE daemon for automatically keying IPsec connections. There exists a vulnerability in the IKE daemon of some BSD systems Such as NetBSD's racoon where sending specifically crafted IKE packets could remove an IPsec SA or all SAs. Once an attacker successfully...
CVE-2002-2139
Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack...
unauthorized deletion of IPsec (and ISAKMP) SAs in racoon
0 Preface Now that most bugs in isakmpd that allowed for unauthorized SA deletion are "fixed", it's time to release some information on racoon. By the way: About 5 months ago I tried to contact the KAME developers. 1 Description racoon, KAME's IKE daemon, contains some flaws, that allow for...