22 matches found
EUVD-2002-0598
Malware in sbrugna...
CVE-2002-2117
Microsoft Windows XP allows remote attackers to cause a denial of service CPU consumption by flooding UDP port 500 ISAKMP...
Zyxel IKE Packet Decoder - Unauthenticated Remote Code Execution (Metasploit)
Exploit Title: Zyxel IKE Packet Decoder Unauthenticated Remote Code Execution Date: 2023-03-31 Exploit Author: sf Vendor Homepage: https://www.zyxel.com/ Software Link: https://www.zyxel.com/ Version: ATP Firmware version 4.60 to 5.35 inclusive, USG FLEX Firmware version 4.60 to 5.35 inclusive, V...
MikroTik RouterOS Uncontrolled Resource Consumption (CVE-2017-8338)
A vulnerability in MikroTik Version 6.38.5 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of UDP packets on port 500 used for L2TP over IPsec, preventing the affected router from accepting new connections; all devices will be disconnected from the router a...
Widespread Exploitation of Zyxel Network Devices
Rapid7 is tracking reports of ongoing exploitation of CVE-2023-28771, a critical unauthenticated command injection vulnerability affecting multiple Zyxel networking devices. The vulnerability is present in the default configuration of vulnerable devices and is exploitable in the Wide Area Network...
CVE-2022-23094
A vulnerability was found in libreswan. A malformed packet that is being rejected triggers a logging action that causes a NULL pointer dereference issue, leading to a crash of the pluto daemon. Mitigation If all configured connections are using IKEv2, the IKEv1 subsystem can be disabled by adding...
CVE-2017-8338
A vulnerability in MikroTik Version 6.38.5 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of UDP packets on port 500 used for L2TP over IPsec, preventing the affected router from accepting new connections; all devices will be disconnected from the router a...
Design/Logic Flaw
A vulnerability in MikroTik Version 6.38.5 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of UDP packets on port 500 used for L2TP over IPsec, preventing the affected router from accepting new connections; all devices will be disconnected from the router a...
CVE-2017-8338
CVE-2017-8338 affects MikroTik RouterOS 6.38.5. An unauthenticated remote attacker can exhaust CPU by sending a flood of UDP packets to port 500 (L2TP over IPsec), potentially disconnecting all devices from the router and clearing logs. Documentation from NVD/Tenable/OpenVAS CNVD confirms the DoS...
Non-ISAKMP Traffic Over Port 500/UDP
Binary data 7212.pasl...
Symantec Dynamic VPN Services: ISAKMP Denial of Service
SUMMARY The NISCC National Infrastructure Security Co-ordination Centre a UK-sponsored inter-departmental agency has identified nearly five-thousand potential ISAKMP vulnerabilities. Test for these vulnerabilities were created by the NISCC and distributed to an unspecified number of vendors...
CVE-2002-2117
Microsoft Windows XP is affected by CVE-2002-2117, where remote attackers can cause a denial of service (CPU consumption) by flooding UDP port 500 (ISAKMP). The Red Hat and NVD entries describe the same impact. No concrete remediation or patch details are provided in the connected documents; PT-2...
CVE-2002-2117
Microsoft Windows XP allows remote attackers to cause a denial of service CPU consumption by flooding UDP port 500 ISAKMP...
CVE-2001-0951
Windows 2000 allows remote attackers to cause a denial of service CPU consumption by flooding Internet Key Exchange IKE UDP port 500 with packets that contain a large number of dot characters...
CVE-2003-0108
isakmpsubprint in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service CPU consumption via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop...
CVE-2003-0108
isakmpsubprint in tcpdump 3.6 through 3.7.1 allows remote attackers to cause a denial of service CPU consumption via a certain malformed ISAKMP packet to UDP port 500, which causes tcpdump to enter an infinite loop...
tcpdump ISAKMP DoS
Endless loop on malcrafted ISAKMP packet UDP/500...
CVE-2002-2117
Microsoft Windows XP allows remote attackers to cause a denial of service CPU consumption by flooding UDP port 500 ISAKMP...
Microsoft Windows Server 2000 - Internet Key Exchange Denial of Service (1)
Microsoft Windows Server 2000 - Internet Key Exchange Denial of Service 1 // source: https://www.securityfocus.com/bid/3652/info Internet Protocol Security IPSec provides authentication and encryption for IP network traffic. The Internet Key Exchange IKE protocol is a management protocol standard...
Microsoft Windows Server 2000 - Internet Key Exchange Denial of Service (1)
// source: https://www.securityfocus.com/bid/3652/info Internet Protocol Security IPSec provides authentication and encryption for IP network traffic. The Internet Key Exchange IKE protocol is a management protocol standard which is used with the IPSec standard. IKE contributes to the IPSec...