Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0164

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0164
Last Modified 21 Aug 2010 12:19:39
Published 03 Mar 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0164

Summary

KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.

Vulnerable Systems

Application

  • Kame Racoon All Versions


References

BUGTRAQ - 20040114 Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon

XF - openbsd-isakmp-initialcontact-delete-sa(14118)

XF - openbsd-isakmp-invalidspi-delete-sa(14117)

BID - 9417

APPLE - APPLE-SA-2004-02-23

NETBSD - NetBSD-SA2004-001

BID - 9416

BUGTRAQ - 20040113 unauthorized deletion of IPsec (and ISAKMP) SAs in racoon


Last Updated: 27 May 2016 10:38:30