Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1335

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2008-1335
Last Modified 10 Dec 2008 01:34:46
Published 13 Mar 2008 02:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1335

Summary

The ipsec4_get_ulp function in the kernel in NetBSD 2.0 through 3.1 and NetBSD-current before 20071028, when the fast_ipsec subsystem is enabled, allows remote attackers to bypass the IPsec policy by sending packets from a source machine with a different endianness than the destination machine, a different vulnerability than CVE-2006-0905.

Vulnerable Systems

Operating System

  • Netbsd 2.0

  • Netbsd 2.0.1

  • Netbsd 2.0.2

  • Netbsd 2.0.3

  • Netbsd 2.0.4

  • Netbsd 2.1

  • Netbsd 2.1.1

  • Netbsd 3.0

  • Netbsd 3.0.1

  • Netbsd 3.0.2

  • Netbsd 3.1

  • Netbsd Current 20071027


References

BID - 28045

SECTRACK - 1019533

SECUNIA - 29180

NETBSD - NetBSD-SA2008-002


Last Updated: 27 May 2016 10:47:07