Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2005-0398

Published: 14/03/2005 Updated: 11/10/2017
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Racoon

Vulnerability Summary

The KAME racoon daemon in ipsec-tools prior to 0.5 allows remote malicious users to cause a denial of service (crash) via malformed ISAKMP packets.

Vulnerable Product Search on Vulmon Subscribe to Product

kame racoon 2005-01-10

kame racoon 2005-01-17

kame racoon 2005-03-07

sgi propack 3.0

kame racoon 2004-04-05

kame racoon 2004-04-07b

kame racoon 2005-02-07

kame racoon 2005-02-14

ipsec-tools ipsec-tools 0.3.3

ipsec-tools ipsec-tools 0.5

kame racoon 2003-07-11

kame racoon 2005-01-24

kame racoon 2005-01-31

kame racoon 2004-05-03

kame racoon 2005-01-03

kame racoon 2005-02-21

kame racoon 2005-02-28

redhat enterprise linux 4.0

suse suse linux 9.2

altlinux alt linux 2.3

redhat enterprise linux 3.0

suse suse linux

redhat enterprise linux desktop 3.0

redhat enterprise linux desktop 4.0

suse suse linux 9.1

Vendor Advisories

Red Hat: ipsec-tools security update
Synopsis ipsec-tools security update Type/Severity Security Advisory: Moderate Topic An updated ipsec-tools package that fixes a bug in parsing of ISAKMP headersis now availableThis update has been rated as having moderate security impact by the RedHat Security Response Team Description T ...
Ubuntu Security Notice: ipsec-tools vulnerability
Sebastian Krahmer discovered a Denial of Service vulnerability in the racoon daemon By sending specially crafted ISAKMP packets, a remote attacker could trigger a buffer overflow which caused racoon to crash ...

References

NVD-CWE-Otherhttp://sourceforge.net/mailarchive/forum.php?thread_id=6787713&forum_id=32000http://security.gentoo.org/glsa/glsa-200503-33.xmlhttp://www.redhat.com/support/errata/RHSA-2005-232.htmlhttps://bugzilla.redhat.com/bugzilla/attachment.cgi?id=109966&action=viewhttp://securitytracker.com/id?1013433http://www.securityfocus.com/bid/12804http://secunia.com/advisories/14584http://www.mandriva.com/security/advisories?name=MDKSA-2005:062http://www.vupen.com/english/advisories/2005/0264https://exchange.xforce.ibmcloud.com/vulnerabilities/19707https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10028https://access.redhat.com/errata/RHSA-2005:232https://usn.ubuntu.com/107-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook