src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remotely, which allows remote malicious users to cause a denial of service (resource consumption).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ipsec-tools ipsec-tools |