Info

Disclosure

Oct 17, 2002

Discovery

Unknown

Dates

Exploit

Oct 17, 2002

Solution

Unknown

Description

Many IPSec implementations, including Linux FreeS/WAN, and operating systems that include them contain a flaw that may allow a remote denial of service. The issue is triggered when a very short IPSec packet is sent, and will result in loss of availability for the service, and in some cases will trigger a kernel panic and loss of availability for the platform.

Classification

Location: Local Access Required, Remote / Network Access
Attack Type: Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Public
Disclosure: OSVDB Verified

Solution

Upgrade to FreeS/WAN version 1.99, or higher, as this has been reported to fix this vulnerability. It is also possible to correct the flaw by applying the patch from the relevant vendor.

Products

Linux FreeS/WAN	FreeS/WAN	1.98
		1.98b
		1.97
		1.96
		1.95
		1.94
		1.93
		1.92
		1.91
		1.9
		1.8
		1.7
		1.6
		1.5

References

ISS X-Force ID: 10411
CVE ID: 2002-0666 (see also: NVD)
CERT VU: 459371
Bugtraq ID: 6011
Vendor Specific Advisory URL: ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-016.txt.asc http://ftp2.ie.freebsd.org/pub/NetBSD/security/advisories/NetBSD-SA2002-016.txt.asc
http://orange.kame.net/dev/cvsweb.cgi/kame/CHANGELOG.2002?rev=1.1
http://www.freeswan.org/freeswan_trees/freeswan-1.99/CHANGES
Other Advisory URL: http://www.bindview.com/Support/RAZOR/Advisories/2002/adv_ipsec.cfm

Credit

Todd Sabin - tsabinrazor.bindview.com - Bindview RAZOR

Direct URL: http://osvdb.org/7410