racoon software vulnerabilities
vulnerabilities.aspcode.net
Searching racoon software vulnerabilities
The KAME IKE Daemon Racoon, when authenticating
man-in-the-middle
|
authenticating
|
authentication
|
unauthorized
|
connections
|
certificate
|
establish
|
signature
|
attackers
|
validates
|
conduct
|
attacks
|
trusted
|
allows
|
Racoon
|
during
|
Daemon
|
verify
|
remote
|
valid
|
Phase
|
which
|
using
|
KAME
|
peer
|
does
|
X509
|
but
|
IKE
|
RSA
|
not
|
The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-middle attacks using a valid, trusted X.509 certificate.
KAME IKE daemon (racoon) does not properly hand
daemon
|
KAME
|
IKE
|
KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.
racoon before 20040407b allows remote attackers
20040407b
|
attackers
|
service
|
denial
|
remote
|
before
|
racoon
|
allows
|
cause
|
racoon before Wednesday, April 07, 2004b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.
Racoon before 20040408a allows remote attackers
20040408a
|
attackers
|
service
|
denial
|
remote
|
before
|
Racoon
|
allows
|
cause
|
Racoon before Thursday, April 08, 2004a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
The eay_check_x509cert function in KAME Racoon
eay_check_x509cert
|
authentication
|
successfully
|
certificates
|
validation
|
attackers
|
function
|
verifies
|
OpenSSL
|
remote
|
Racoon
|
bypass
|
allow
|
fails
|
which
|
could
|
KAME
|
even
|
The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.
The KAME racoon daemon in ipsec-tools before 0.
ipsec-tools
|
attackers
|
service
|
remote
|
denial
|
allows
|
racoon
|
daemon
|
before
|
cause
|
KAME
|
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.
The Internet Key Exchange version 1 (IKEv1) imp
Exchange
|
Internet
|
version
|
Key
|
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
The Internet Key Exchange version 1 (IKEv1) imp
Exchange
|
Internet
|
version
|
Key
|
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in the Shoichi Sakane KAME Project racoon, as used by NetBSD 1.6, 2.x before Thursday, January 19, 2006, certain FreeBSD releases, and possibly other distributions of BSD or Linux operating systems, when running in aggressive mode, allows remote attackers to cause a denial of service (daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Software vulnerabilities results 1 to 9 of 9
Page:
1