Lucene search
Ubuntu.comUB:CVE-2008-1198HistoryMar 06, 2008 - 12:00 a.m.
CVE-2008-1198
2008-03-0600:00:00
ubuntu.com
ubuntu.com
9
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.004 Low
EPSS
Percentile
73.6%
The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5
configures racoon to use aggressive IKE mode instead of main IKE mode,
which makes it easier for remote attackers to conduct brute force attacks
by sniffing an unencrypted preshared key (PSK) hash.
Notes
| Author | Note |
|---|---|
| jdstrand | not affected on Ubuntu as racoon.conf does not ship with this and has in its commented out section ‘exchange_mode main,aggressive’ |
Related
nessus
nessus
RHEL 4 : initscripts (Unpatched Vulnerability)
2024-06-03 00:00:00
Oracle Linux 5 : initscripts (ELSA-2012-0312)
2013-07-12 00:00:00
openvas
openvas
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2012-0312)
2015-10-06 00:00:00
cvelist
cvelist
CVE-2008-1198
2008-03-06 21:00:00
prion
prion
Default configuration
2008-03-06 21:44:00
cve
cve
CVE-2008-1198
2008-03-06 21:44:00
oraclelinux
oraclelinux
initscripts security and bug fix update
2012-03-01 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 01:12:05
redhat
redhat
(RHSA-2012:0312) Low: initscripts security and bug fix update
2012-02-21 00:00:00
nvd
nvd
CVE-2008-1198
2008-03-06 21:44:00
7.1 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
0.004 Low
EPSS
Percentile
73.6%
Related for UB:CVE-2008-1198