The ipsec4_get_ulp function in the kernel in NetBSD 2.0 up to and including 3.1 and NetBSD-current prior to 20071028, when the fast_ipsec subsystem is enabled, allows remote malicious users to bypass the IPsec policy by sending packets from a source machine with a different endianness than the destination machine, a different vulnerability than CVE-2006-0905.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netbsd netbsd 3.0 |
||
netbsd netbsd 3.0.1 |
||
netbsd netbsd 2.0.2 |
||
netbsd netbsd 2.0.3 |
||
netbsd netbsd 2.0.4 |
||
netbsd netbsd 3.1 |
||
netbsd netbsd 2.1 |
||
netbsd netbsd 2.1.1 |
||
netbsd netbsd current |
||
netbsd netbsd 2.0 |
||
netbsd netbsd 2.0.1 |
||
netbsd netbsd 3.0.2 |