Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipsec-tools ipsec-tools vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-10396
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The implementation permits a remote malicious user to exhaust computational resources on the remote endpoint by repeatedly sending ISA...
Ipsec-tools Ipsec-tools 0.8.2
NA
CVE-2015-4047
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
Ipsec-tools Ipsec-tools 0.8.2
Canonical Ubuntu Linux 12.04
Fedoraproject Fedora 20
Fedoraproject Fedora 21
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Acceleration Manager 13.0.0
F5 Big-ip Local Traffic Manager
F5 Big-ip Local Traffic Manager 13.0.0
F5 Big-ip Advanced Firewall Manager 13.0.0
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Analytics 13.0.0
F5 Big-ip Access Policy Manager
F5 Big-ip Access Policy Manager 13.0.0
F5 Big-ip Application Security Manager
F5 Big-ip Application Security Manager 13.0.0
F5 Big-ip Domain Name System 13.0.0
F5 Big-ip Domain Name System
F5 Big-ip Global Traffic Manager
F5 Big-ip Edge Gateway
F5 Big-ip Link Controller
F5 Big-ip Link Controller 13.0.0
NA
CVE-2009-1632
Multiple memory leaks in Ipsec-tools prior to 0.7.2 allow remote malicious users to cause a denial of service (memory consumption) via vectors involving (1) signature verification during user authentication with X.509 certificates, related to the eay_check_x509sign function in sr...
Ipsec-tools Ipsec-tools 0.1
Ipsec-tools Ipsec-tools 0.2
Ipsec-tools Ipsec-tools 0.3.2
Ipsec-tools Ipsec-tools 0.3
Ipsec-tools Ipsec-tools 0.3.3
Ipsec-tools Ipsec-tools 0.6.3
Ipsec-tools Ipsec-tools 0.3.1
Ipsec-tools Ipsec-tools 0.3 Rc1
Ipsec-tools Ipsec-tools 0.5
Ipsec-tools Ipsec-tools 0.5.2
Ipsec-tools Ipsec-tools 0.6.4
Ipsec-tools Ipsec-tools 0.7
Ipsec-tools Ipsec-tools 0.2.3
Ipsec-tools Ipsec-tools 0.2.4
Ipsec-tools Ipsec-tools 0.3 Rc3
Ipsec-tools Ipsec-tools 0.6
Ipsec-tools Ipsec-tools 0.6.2
Ipsec-tools Ipsec-tools 0.4
Ipsec-tools Ipsec-tools 0.6.7
Ipsec-tools Ipsec-tools 0.6.5
Ipsec-tools Ipsec-tools 0.6.6
Ipsec-tools Ipsec-tools
NA
CVE-2009-1574
racoon/isakmp_frag.c in ipsec-tools prior to 0.7.2 allows remote malicious users to cause a denial of service (crash) via crafted fragmented packets without a payload, which triggers a NULL pointer dereference.
Ipsec-tools Ipsec-tools 0.1
Ipsec-tools Ipsec-tools 0.2
Ipsec-tools Ipsec-tools 0.3.1
Ipsec-tools Ipsec-tools 0.4
Ipsec-tools Ipsec-tools 0.6.5
Ipsec-tools Ipsec-tools 0.6.6
Ipsec-tools Ipsec-tools 0.3
Ipsec-tools Ipsec-tools 0.2.3
Ipsec-tools Ipsec-tools 0.2.4
Ipsec-tools Ipsec-tools 0.6.1
Ipsec-tools Ipsec-tools 0.6.2
Ipsec-tools Ipsec-tools 0.3.3
Ipsec-tools Ipsec-tools 0.3.2
Ipsec-tools Ipsec-tools 0.6.3
Ipsec-tools Ipsec-tools 0.6.4
Ipsec-tools Ipsec-tools 0.2.1
Ipsec-tools Ipsec-tools 0.2.2
Ipsec-tools Ipsec-tools 0.5
Ipsec-tools Ipsec-tools 0.7
Ipsec-tools Ipsec-tools
1 EDB exploit
NA
CVE-2008-3652
src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remotely, which allows remote malicious users to cause a denial of service (resource consumption).
Ipsec-tools Ipsec-tools
NA
CVE-2008-3651
Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools prior to 0.7.1 allows remote authenticated users to cause a denial of service (memory consumption) via invalid proposals.
Linux Ipsec Tools Racoon Daemon 0.2.5
Linux Ipsec Tools Racoon Daemon 0.6
Linux Ipsec Tools Racoon Daemon 0.7
Linux Ipsec Tools Racoon Daemon 0.2.2
Linux Ipsec Tools Racoon Daemon 0.6.4
Linux Ipsec Tools Racoon Daemon 0.6.7
Linux Ipsec Tools Racoon Daemon 0.3.3
Linux Ipsec Tools Racoon Daemon 0.6.6
Linux Ipsec Tools Racoon Daemon 0.5.2
Linux Ipsec Tools Racoon Daemon 0.5.1
Linux Ipsec Tools Racoon Daemon 0.6.5
Linux Ipsec Tools Racoon Daemon 0.5
NA
CVE-2007-2524
Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request System (OTRS) 2.0.x allows remote malicious users to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier ...
Otrs Otrs 2.0.4
1 EDB exploit
NA
CVE-2007-1841
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools prior to 0.6.7 allows remote malicious users to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
Ipsec-tools Ipsec-tools
NA
CVE-2005-3732
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools prior to 0.6.3, when running in aggressive mode, allows remote malicious users to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by ...
Ipsec-tools Ipsec-tools 0.5.2
Ipsec-tools Ipsec-tools 0.6
Ipsec-tools Ipsec-tools 0.6.1
Ipsec-tools Ipsec-tools 0.6.2
Ipsec-tools Ipsec-tools 0.5
Ipsec-tools Ipsec-tools 0.5.1
NA
CVE-2005-0398
The KAME racoon daemon in ipsec-tools prior to 0.5 allows remote malicious users to cause a denial of service (crash) via malformed ISAKMP packets.
Kame Racoon 2005-01-10
Kame Racoon 2005-01-17
Kame Racoon 2005-03-07
Sgi Propack 3.0
Kame Racoon 2004-04-05
Kame Racoon 2004-04-07b
Kame Racoon 2005-02-07
Kame Racoon 2005-02-14
Ipsec-tools Ipsec-tools 0.3.3
Ipsec-tools Ipsec-tools 0.5
Kame Racoon 2003-07-11
Kame Racoon 2005-01-24
Kame Racoon 2005-01-31
Kame Racoon 2004-05-03
Kame Racoon 2005-01-03
Kame Racoon 2005-02-21
Kame Racoon 2005-02-28
Redhat Enterprise Linux 4.0
Suse Suse Linux 9.2
Altlinux Alt Linux 2.3
Redhat Enterprise Linux 3.0
Suse Suse Linux
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »