Published: 03/03/2004 Updated: 11/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N

KAME IKE daemon (racoon) does not properly handle hash values, which allows remote malicious users to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.

Vulnerable Product	Search on Vulmon	Subscribe to Product
kame racoon all_versions

source: wwwsecurityfocuscom/bid/9417/info It has been reported that it may be possible for attackers to remotely delete security associations (SAs) in hosts running the KAME IKE daemon Racoon /* Sun Microsystems Solaris sysinfo() Kernel Memory Disclosure exploit * =================================================================== * L ...

NVD-CWE-Other ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2004-001.txt.asc http://www.securityfocus.com/bid/9417 http://lists.apple.com/archives/security-announce/2004/Feb/msg00000.html http://www.securityfocus.com/bid/9416 http://marc.info/?l=bugtraq&m=107411758202662&w=2 http://marc.info/?l=bugtraq&m=107403331309838&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/14118 https://exchange.xforce.ibmcloud.com/vulnerabilities/14117 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9737 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A947 https://nvd.nist.gov https://www.exploit-db.com/exploits/23540/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-0164

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect