OSVDB ID: 24068

Title: Multiple BSD IPsec Sequence Number fast_ipsec(4) Verification Bypass

Info

Disclosure
Mar 22, 2006

Discovery
Unknown

Dates

Exploit
Unknown

Solution
Unknown

Description

 The IP Security Protocol (IPSec) on FreeBSD contains a flaw that may allow a malicious user to replay IPSec packets. The issue is triggered when IPSec fails to update the replay sequence number associated with a Security Association, allowing packets to unconditionally pass sequence number verification checks. It is possible that the flaw may allow a loss of integrity.

Classification

 Location: Remote / Network Access
Impact: Loss of Integrity
Disclosure: OSVDB Verified

Solution

 Upgrade to version 4-STABLE, 5-STABLE, or 6-STABLE, or to the RELENG_6_0, RELENG_5_4, RELENG_5_3, RELENG_4_11, or RELENG_4_10 security branch dated after the correction date, as it has been reported to fix this vulnerability. In addition, FreeBSD has released a patch to address this vulnerability.

Products

FreeBSD Project

FreeBSD

 4.8-x
4.9-x
4.10-x
4.11-x
5.0-x
5.1-x
5.2-x
5.3-x
5.4-x
6.0-x
6.1-STABLE

References

Credit
  • Pawel Jakub Dawidek - pjdfreebsd.org - FreeBSD Project


Direct URL: http://osvdb.org/24068