The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools prior to 0.6.3, when running in aggressive mode, allows remote malicious users to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ipsec-tools ipsec-tools 0.5.2 |
||
ipsec-tools ipsec-tools 0.6 |
||
ipsec-tools ipsec-tools 0.6.1 |
||
ipsec-tools ipsec-tools 0.6.2 |
||
ipsec-tools ipsec-tools 0.5 |
||
ipsec-tools ipsec-tools 0.5.1 |