Lucene search
Veracode Vulnerability DatabaseVERACODE:24998HistoryApr 10, 2020 - 1:12 a.m.
Information Disclosure
2020-04-1001:12:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.004 Low
EPSS
Percentile
73.6%
iniscripts is vulnerable to information disclosure. With the default IPsec (Internet Protocol Security) ifup script configuration, the racoon IKE key management daemon used aggressive IKE mode instead of main IKE mode. This resulted in the preshared key (PSK) hash being sent unencrypted, which could make it easier for an attacker able to sniff network traffic to obtain the plain text PSK from a transmitted hash.
Related
nessus
nessus
RHEL 4 : initscripts (Unpatched Vulnerability)
2024-06-03 00:00:00
RHEL 5 : initscripts (RHSA-2012:0312)
2012-02-21 00:00:00
openvas
openvas
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
RedHat Update for initscripts RHSA-2012:0312-03
2012-02-21 00:00:00
Oracle: Security Advisory (ELSA-2012-0312)
2015-10-06 00:00:00
cvelist
cvelist
CVE-2008-1198
2008-03-06 21:00:00
prion
prion
Default configuration
2008-03-06 21:44:00
cve
cve
CVE-2008-1198
2008-03-06 21:44:00
oraclelinux
oraclelinux
initscripts security and bug fix update
2012-03-01 00:00:00
redhat
redhat
(RHSA-2012:0312) Low: initscripts security and bug fix update
2012-02-21 00:00:00
ubuntucve
ubuntucve
CVE-2008-1198
2008-03-06 00:00:00
nvd
nvd
CVE-2008-1198
2008-03-06 21:44:00