Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2004:027 (ipsec-tools)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.50510

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2004:027 (ipsec-tools)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to ipsec-tools
announced via advisory MDKSA-2004:027.

A very serious security flaw was discovered by Ralf Spenneberg in
racoon, the IKE daemon of the KAME-tools. Racoon does not very the RSA
signature during phase one of a connection using either main or
aggressive mode. Only the certificate of the client is verified, the
certificate is not used to verify the client's signature.

All versions of ipsec-tools prior to 0.2.5 and 0.3rc5 are vulnerable
to this issue. The provided package updates ipsec-tools to 0.2.5.

Affected versions: 10.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2004:027
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0155

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: BugTraq ID: 10072
Common Vulnerability Exposure (CVE) ID: CVE-2004-0155
http://marc.info/?l=bugtraq&m=108369640424244&w=2
http://www.securityfocus.com/bid/10072
Bugtraq: 20040407 CAN-2004-0155: The KAME IKE Daemon Racoon does not verify RSA Signatures during Phase 1, allows man-in-the-middle attacks and unauthorized connections (Google Search)
http://marc.info/?l=bugtraq&m=108136746911000&w=2
CERT/CC vulnerability note: VU#552398
http://www.kb.cert.org/vuls/id/552398
http://www.gentoo.org/security/en/glsa/glsa-200406-17.xml
http://www.mandriva.com/security/advisories?name=MDKSA-2004:027
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9291
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A945
http://www.redhat.com/support/errata/RHSA-2004-165.html
SCO Security Bulletin: SCOSA-2005.10
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt
http://secunia.com/advisories/11328

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.50510
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2004:027 (ipsec-tools)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ipsec-tools announced via advisory MDKSA-2004:027. A very serious security flaw was discovered by Ralf Spenneberg in racoon, the IKE daemon of the KAME-tools. Racoon does not very the RSA signature during phase one of a connection using either main or aggressive mode. Only the certificate of the client is verified, the certificate is not used to verify the client's signature. All versions of ipsec-tools prior to 0.2.5 and 0.3rc5 are vulnerable to this issue. The provided package updates ipsec-tools to 0.2.5. Affected versions: 10.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. https://secure1.securityspace.com/smysecure/catid.html?in=MDKSA-2004:027 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0155 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 10072 Common Vulnerability Exposure (CVE) ID: CVE-2004-0155 http://marc.info/?l=bugtraq&m=108369640424244&w=2 http://www.securityfocus.com/bid/10072 Bugtraq: 20040407 CAN-2004-0155: The KAME IKE Daemon Racoon does not verify RSA Signatures during Phase 1, allows man-in-the-middle attacks and unauthorized connections (Google Search) http://marc.info/?l=bugtraq&m=108136746911000&w=2 CERT/CC vulnerability note: VU#552398 http://www.kb.cert.org/vuls/id/552398 http://www.gentoo.org/security/en/glsa/glsa-200406-17.xml http://www.mandriva.com/security/advisories?name=MDKSA-2004:027 http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9291 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A945 http://www.redhat.com/support/errata/RHSA-2004-165.html SCO Security Bulletin: SCOSA-2005.10 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt http://secunia.com/advisories/11328
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com