Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!
Bug 85307 - net-firewall/ipsec-tools racoon ISAKMP Headers DOS Vulnerability
Summary: net-firewall/ipsec-tools racoon ISAKMP Headers DOS Vulnerability
Status: RESOLVED DUPLICATE of bug 84479
Alias: None
Product: Gentoo Security
Classification: Unclassified
Component: Vulnerabilities (show other bugs)
Hardware: All All
: High normal (vote)
Assignee: Gentoo Security
Depends on:
Reported: 2005-03-14 23:43 UTC by petre rodan (RETIRED)
Modified: 2005-07-17 13:06 UTC (History)
0 users

See Also:
Package list:
Runtime testing required: ---


Note You need to log in before you can comment on or make changes to this bug.
Description petre rodan (RETIRED) gentoo-dev 2005-03-14 23:43:48 UTC
ipsec-tools is based on this KAME implementation, so I'm not sure if this bug has been inherited or not :/
seeing the redhat response (see link), it might be vulnerable.

K-OTik Security Advisory : KOTIK/ADV-2005-0264
CVE Reference : CAN-2005-0398
Rated as : Moderate 
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-03-15

 * Technical Description *

A new vulnerability was identified in KAME Racoon, which may be exploited by attackers to conduct Denial of Service attacks. The flaw occurs when handling specially crafted ISAKMP Packet Headers, which may be exploited to crash the application.

 * Affected Products *

KAME Racoon version 20050307 and prior

 * Solution *

 * References *

 * Credits *

Vulnerability reported by Sebastian Krahmer
Comment 1 petre rodan (RETIRED) gentoo-dev 2005-03-15 00:04:42 UTC
actual bug on redhat bugzilla:
Comment 2 Thierry Carrez (RETIRED) gentoo-dev 2005-03-15 01:04:01 UTC

*** This bug has been marked as a duplicate of 84479 ***