IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote malicious users to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
frees wan frees wan 1.9 |
||
frees wan frees wan 1.9.1 |
||
frees wan frees wan 1.9.3 |
||
frees wan frees wan 1.9.5 |
||
frees wan frees wan 1.9.2 |
||
frees wan frees wan 1.9.4 |
||
frees wan frees wan 1.9.6 |
||
apple mac os x 10.2 |
||
apple mac os x server 10.2 |
||
freebsd freebsd 4.6 |
||
netbsd netbsd 1.5.2 |
||
netbsd netbsd 1.5.3 |
||
netbsd netbsd 1.5 |
||
netbsd netbsd 1.5.1 |
||
netbsd netbsd 1.6 |
||
global technology associates gnat box firmware 3.3 |
||
nec bluefire ix1035 router |
||
nec ix1010 |
||
nec ix1011 |
||
global technology associates gnat box firmware 3.1 |
||
nec ix1050 |
||
global technology associates gnat box firmware 3.2 |
||
nec ix1020 |
||
nec ix2010 |