5 matches found
Information Disclosure
iniscripts is vulnerable to information disclosure. With the default IPsec Internet Protocol Security ifup script configuration, the racoon IKE key management daemon used aggressive IKE mode instead of main IKE mode. This resulted in the preshared key PSK hash being sent unencrypted, which could...
USN-3482-1: ipsec-tools vulnerability
It was discovered that racoon, the ipsec-tools IKE daemon, incorrectly handled certain ISAKMP fragments. A remote attacker could use this issue to cause racoon to crash, resulting in a denial of service...
Low: Red Hat Security Advisory: initscripts security and bug fix update
An updated initscripts package that fixes one security issue and four bugs is now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severit...
RedHat Update for initscripts RHSA-2012:0312-03
Check for the Version of initscripts OpenVAS Vulnerability Test RedHat Update for initscripts RHSA-2012:0312-03 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it und...
KAME Racoon IKE daemon fails to properly verify client RSA signatures
Overview The KAME Racoon IKE daemon fails to properly verify client RSA signatures when using Main or Aggressive Mode during a Phase 1 IKE exchange. Description Racoon is an IKE Key Management daemon that negotiates and configures a set of parameters for IPSec. When authenticating a peer in Phase...