|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> Gentoo Local Security Checks >> [GLSA-200406-17] IPsec-Tools: authentication bug in racoon Vulnerability Assessment Details
|
[GLSA-200406-17] IPsec-Tools: authentication bug in racoon |
||
IPsec-Tools: authentication bug in racoon Detailed Explanation for this Vulnerability Assessment The remote host is affected by the vulnerability described in GLSA-200406-17 (IPsec-Tools: authentication bug in racoon) The KAME IKE daemon racoon is used to authenticate peers during Phase 1 when using either preshared keys, GSS-API, or RSA signatures. When using RSA signatures racoon validates the X.509 certificate but not the RSA signature. Impact By sending a valid and trusted X.509 certificate and any private key an attacker could exploit this vulnerability to perform man-in-the-middle attacks and initiate unauthorized connections. Workaround There is no known workaround at this time. All users are encouraged to upgrade to the latest available version. References: http://ipsec-tools.sourceforge.net/x509sig.html Solution: All IPsec-Tools users should upgrade to the latest stable version: # emerge sync # emerge -pv ">=net-firewall/ipsec-tools-0.3.3" # emerge ">=net-firewall/ipsec-tools-0.3.3" Network Security Threat Level: Medium Networks Security ID: Vulnerability Assessment Copyright: (C) 2005 Michel Arboi |
||
Cables, Connectors |
Open Eye OE-MTX08 8TB Micro Server With Linux (Boots To Login) No Accessories
$294.95
LattePanda Sigma - x86 Windows / Linux Single Board Computer Server (32GB RAM)
$550.00
1U BareMetal pfsense opnsense Router Firewall DNS Server 6x 10GB Ethernet Ports
$149.00
IBM Power8 S822L 20-Core 3.42GHz 256Gb 1.2Tb 40G Elastic Storage Server 5148-22L
$599.95
IBM E850 Power8 2x 12C 3.02GHz 512Gb 1.8Tb SAS 10GbE 16Gb Linux Server 8408-E8E
$899.95
PFSENSE 15" Depth Server Router Firewall Supermicro X11SSH-F E3-1240 V5 32GB RAM
$382.00
IBM 9006-22C 12 Bay LFF SAS3 12G Dual 22 Core 2.6GHz Power9 P9 Linux Server
$2799.99
1U Open Source Router Firewall X10SLH-N6-ST031 E3-1270 V3 6x 10GB Ethernet 16GB
$419.00
Australia Linux Server- 32 GB RAM + 500 HDD + 6 Core processor
$66.19
POGO Linux WEBWARE 1150 Rack-Mount Server Pentium 4 2.8GHz 512MB - No Drives
$179.99
|
||
No Discussions have been posted on this vulnerability. |