Published: 29/05/2015 Updated: 27/03/2019

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote malicious users to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ipsec-tools ipsec-tools 0.8.2
canonical ubuntu linux 12.04
fedoraproject fedora 20
fedoraproject fedora 21
f5 big-ip application acceleration manager
f5 big-ip application acceleration manager 13.0.0
f5 big-ip local traffic manager
f5 big-ip local traffic manager 13.0.0
f5 big-ip advanced firewall manager 13.0.0
f5 big-ip advanced firewall manager
f5 big-ip analytics
f5 big-ip analytics 13.0.0
f5 big-ip access policy manager
f5 big-ip access policy manager 13.0.0
f5 big-ip application security manager
f5 big-ip application security manager 13.0.0
f5 big-ip domain name system 13.0.0
f5 big-ip domain name system
f5 big-ip global traffic manager
f5 big-ip edge gateway
f5 big-ip link controller
f5 big-ip link controller 13.0.0
f5 big-ip policy enforcement manager
f5 big-ip policy enforcement manager 13.0.0
f5 big-iq cloud
f5 enterprise manager
f5 big-ip wan optimization manager
f5 big-ip webaccelerator
f5 big-iq centralized management 4.6.0
f5 big-iq security
f5 big-iq cloud and orchestration 1.0.0
f5 big-iq adc 4.5.0
f5 big-iq device
f5 big-ip protocol security manager
debian debian linux 9.0
debian debian linux 8.0
debian debian linux 7.0

Debian Bug report logs - #785778 ipsec-tools: CVE-2015-4047: null pointer dereference crash in racoon Package: src:ipsec-tools; Maintainer for src:ipsec-tools is ipsec-tools packagers <team+ipsec-tools@trackerdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 20 May 2015 06:12:01 UTC Sever ...

ipsec-tools could be made to crash if it received specially crafted network traffic ...

Javantea discovered a NULL pointer dereference flaw in racoon, the Internet Key Exchange daemon of ipsec-tools A remote attacker can use this flaw to cause the IKE daemon to crash via specially crafted UDP packets, resulting in a denial of service For the oldstable distribution (wheezy), this problem has been fixed in version 1:080-14+deb7u1 F ...

CWE-476 http://seclists.org/fulldisclosure/2015/May/81 http://www.debian.org/security/2015/dsa-3272 http://www.openwall.com/lists/oss-security/2015/05/20/1 http://www.securityfocus.com/bid/74739 http://seclists.org/fulldisclosure/2015/May/83 http://www.securitytracker.com/id/1032397 http://packetstormsecurity.com/files/131992/IPsec-Tools-0.8.2-Denial-Of-Service.html http://www.openwall.com/lists/oss-security/2015/05/21/11 https://www.altsci.com/ipsec/ipsec-tools-sa.html http://www.ubuntu.com/usn/USN-2623-1 http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159549.html http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159482.html https://support.f5.com/csp/article/K05013313 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=785778 https://usn.ubuntu.com/2623-1/https://nvd.nist.gov

CVE-2015-4047

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect