Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

320 matches found

Tenable Nessus
Tenable Nessusadded 2009/09/22 12:0 a.m.17 views

openSUSE Security Update : strongswan (strongswan-1281)

The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. CVE-2009-2661 This could lead to crashes of the pluto IKE daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

5CVSS5.4AI score0.01793EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2009/09/22 12:0 a.m.23 views

openSUSE Security Update : openswan (openswan-1285)

The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. CVE-2009-2661 This could lead to crashes of the pluto IKE daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

5CVSS5.4AI score0.01793EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2009/09/22 12:0 a.m.15 views

openSUSE Security Update : strongswan (strongswan-1281)

The previous fix for a flaw in the ASN.1 parser was incomplete and had to be reworked. CVE-2009-2661 This could lead to crashes of the pluto IKE daemon. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Securit...

5CVSS5.4AI score0.01793EPSS
Exploits0References4
OpenVAS
OpenVASadded 2009/09/15 12:0 a.m.19 views

Gentoo Security Advisory GLSA 200909-05 (openswan)

The remote host is missing updates announced in advisory GLSA 200909-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2009 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

5CVSS0.1AI score0.10861EPSS
Exploits2
OpenVAS
OpenVASadded 2009/09/15 12:0 a.m.10 views

Gentoo Security Advisory GLSA 200909-05 (openswan)

The remote host is missing updates announced in advisory GLSA 200909-05. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR GPL-3.0-only...

5CVSS7.7AI score0.10861EPSS
Exploits2References3
OpenVAS
OpenVASadded 2009/08/06 12:0 a.m.20 views

strongSwan Denial Of Service Vulnerability - Aug09

This host has strongSwan and is prone to Denial of Service Vulnerability. OpenVAS Vulnerability Test $Id: gbstrongswandosvulnaug09.nasl 4869 2016-12-29 11:01:45Z teissa $ strongSwan Denial Of Service Vulnerability - Aug09 Authors: Antu Sanadi Copyright: Copyright c 2009 Greenbone Networks GmbH,...

5CVSS0.1AI score0.01793EPSS
Exploits0References2
Prion
Prionadded 2009/08/04 4:30 p.m.11 views

Design/Logic Flaw

The asn1length function in strongSwan 2.8 before 2.8.11, 4.2 before 4.2.17, and 4.3 before 4.3.3 does not properly handle X.509 certificates with crafted Relative Distinguished Names RDNs, which allows remote attackers to cause a denial of service pluto IKE daemon crash via malformed ASN.1 data...

5CVSS6.7AI score0.08229EPSS
Exploits0References10Affected Software1
CVE
CVEadded 2009/08/04 4:13 p.m.61 views

CVE-2009-2661

The CVE-2009-2661 issue affects the OpenSwan/strongSwan pluto daemon (X.509 handling of RDNs). A crafted ASN.1 data input could crash pluto, causing a denial of service. The root cause is tied to an ASN.1 parsing length/structure handling for RDNs, with references indicating an incomplete prior f...

5CVSS5.5AI score0.01793EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessusadded 2009/07/21 12:0 a.m.21 views

openSUSE Security Update : openswan (openswan-687)

By sending a specially crafted Dead Peer Detection DPD packet remote attackers could crash the pluto IKE daemon CVE-2009-0790. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update openswan-687. The...

5CVSS8.2AI score0.10861EPSS
Exploits2References2
Tenable Nessus
Tenable Nessusadded 2009/07/21 12:0 a.m.28 views

openSUSE Security Update : strongswan (strongswan-676)

By sending a specially crafted Dead Peer Detection DPD packet remote attackers could crash the pluto IKE daemon CVE-2009-0790. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE Security Update strongswan-676. T...

5CVSS8.2AI score0.10861EPSS
Exploits2References2
OpenVAS
OpenVASadded 2009/06/30 12:0 a.m.19 views

StrongSwan/Openswan Denial Of Service Vulnerability June-09

The host is installed with strongSwan/Openswan and is prone to Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodstrongswannopenswandosvulnjun09.nasl 6515 2017-07-04 11:54:15Z cfischer $ StrongSwan/Openswan Denial Of Service Vulnerability June-09 Authors: Sharath S Copyright:...

5CVSS7.5AI score0.08229EPSS
Exploits0References2
OpenVAS
OpenVASadded 2009/06/30 12:0 a.m.9 views

strongSwan/Openswan DoS Vulnerability (Jun 2009)

strongSwan / Openswan is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.4AI score0.08229EPSS
Exploits0References2
UbuntuCve
UbuntuCveadded 2009/06/25 2:0 a.m.14 views

CVE-2009-2185

The ASN.1 parser pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1parser.c in a strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and b openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service pluto IKE daemon crash...

5CVSS5.9AI score0.08229EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2009/06/25 2:0 a.m.1 views

CVE-2009-2185

The ASN.1 parser pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1parser.c in a strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and b openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service pluto IKE daemon crash...

5CVSS5.6AI score0.08229EPSS
Exploits0References25
OSV
OSVadded 2009/06/25 2:0 a.m.1 views

DEBIAN-CVE-2009-2185

The ASN.1 parser pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1/asn1parser.c in a strongSwan 2.8 before 2.8.10, 4.2 before 4.2.16, and 4.3 before 4.3.2; and b openSwan 2.6 before 2.6.22 and 2.4 before 2.4.15 allows remote attackers to cause a denial of service pluto IKE daemon crash...

5CVSS6.8AI score0.08229EPSS
Exploits0References1
OpenVAS
OpenVASadded 2009/04/06 12:0 a.m.19 views

RedHat Security Advisory RHSA-2009:0402

The remote host is missing updates announced in advisory RHSA-2009:0402. Openswan is a free implementation of Internet Protocol Security IPsec and Internet Key Exchange IKE. IPsec uses strong cryptography to provide both authentication and encryption services. These services allow you to build...

5CVSS0.2AI score0.10861EPSS
Exploits8References2
CVE
CVEadded 2009/04/01 10:0 a.m.90 views

CVE-2009-0790

OpenSwan/StrongSwan pluto IKE daemon vulnerable to denial of service via crafted DPD packets (R_U_THERE, R_U_THERE_ACK) that trigger a NULL pointer dereference due to inconsistent ISAKMP/phase2 state. Affected: Openswan/Strongswan IPsec implementations listed in CVE-2009-0790 with vulnerable rang...

5CVSS7.1AI score0.10861EPSS
Exploits2References17Affected Software2
OSV
OSVadded 2009/03/30 12:0 a.m.19 views

DSA-1760-1 openswan - denial of service

Bulletin has no description...

5CVSS8.9AI score0.10861EPSS
Exploits8
CVE
CVEadded 2005/01/29 5:0 a.m.57 views

CVE-2005-0162

Openswan pluto vulnerability (CVE-2005-0162): stack-based buffer overflow in get_internal_addresses in Openswan 1.x prior to 1.0.9 and 2.x prior to 2.3.0 when built with XAUTH and PAM. Remote authenticated attackers could execute arbitrary code. Affects the pluto component; exploitation context m...

7.2CVSS7.6AI score0.04296EPSS
Exploits0References9Affected Software2
securityvulns
securityvulnsadded 2005/01/27 12:0 a.m.28 views

OpenSWAN IPSec implementation XAUTH authentication buffer overflow

pluto process stack based buffer overflow...

3.8AI score
Exploits0References1Affected Software1
Rows per page
Query Builder