 |
Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | ||
| Test ID: | 1.3.6.1.4.1.25623.1.0.50369 |
| Category: | Fedora Local Security Checks |
| Title: | Fedora Core 2 FEDORA-2004-132 (ipsec-tools) |
| Summary: | NOSUMMARY |
| Description: | Description: The remote host is missing an update to ipsec-tools announced via advisory FEDORA-2004-132. This is the IPsec-Tools package. You need this package in order to really use the IPsec functionality in the linux-2.5+ kernels. This package builds: - libipsec, a PFKeyV2 library - setkey, a program to directly manipulate policies and SAs - racoon, an IKEv1 keying daemon Update Information: An updated ipsec-tools package that fixes vulnerabilities in racoon (the ISAKMP daemon) is now available. When ipsec-tools receives an ISAKMP header, it will attempt to allocate sufficient memory for the entire ISAKMP message according to the header's length field. If an attacker crafts an ISAKMP header with a extremely large value in the length field, racoon may exceed operating system resource limits and be terminated, resulting in a denial of service. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0403 to this issue. This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 3e2e04aca6ff5ad9b87a58f360b5bdfd SRPMS/ipsec-tools-0.2.5-2.src.rpm b5cf2f91174df9363be3fae649278f33 i386/ipsec-tools-0.2.5-2.i386.rpm 9f0262afaad8669bb6d194874845ba19 i386/debug/ipsec-tools-debuginfo-0.2.5-2.i386.rpm 4783879e9aa712ddd98373aad9429333 x86_64/ipsec-tools-0.2.5-2.x86_64.rpm 7447cbdca523ad5b185d697388386f2e x86_64/debug/ipsec-tools-debuginfo-0.2.5-2.x86_64.rpm This update can also be installed with the Update Agent you can launch the Update Agent with the 'up2date' command. Solution: Apply the appropriate updates. http://www.fedoranews.org/updates/FEDORA-2004-132.shtml Risk factor : Medium CVSS Score: 5.0 |
| Cross-Ref: |
BugTraq ID: 10172 Common Vulnerability Exposure (CVE) ID: CVE-2004-0403 http://marc.info/?l=bugtraq&m=108369640424244&w=2 http://www.securityfocus.com/bid/10172 http://security.gentoo.org/glsa/glsa-200404-17.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069 http://www.osvdb.org/5491 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984 http://www.redhat.com/support/errata/RHSA-2004-165.html SCO Security Bulletin: SCOSA-2005.10 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt http://securitytracker.com/id?1009937 http://secunia.com/advisories/11410 http://secunia.com/advisories/11877 SGI Security Advisory: 20040506-01-U ftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.asc XForce ISS Database: racoon-isakmp-dos(15893) https://exchange.xforce.ibmcloud.com/vulnerabilities/15893 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below. |