CVE-2009-1574medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragmented packets without a payload, which triggers a NULL pointer dereference.
References
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705
http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
http://lists.apple.com/archives/security-announce/2010//Dec/msg00001.html
http://lists.opensuse.org/opensuse-security-announce/2009-07/msg00002.html
http://secunia.com/advisories/35113
http://secunia.com/advisories/35153
http://secunia.com/advisories/35159
http://secunia.com/advisories/35212
http://secunia.com/advisories/35404
http://secunia.com/advisories/35685
http://security.gentoo.org/glsa/glsa-200905-03.xml
http://sourceforge.net/project/shownotes.php?group_id=74601&release_id=677611
http://support.apple.com/kb/HT3937
http://support.apple.com/kb/HT4298
http://www.debian.org/security/2009/dsa-1804
http://www.mandriva.com/security/advisories?name=MDVSA-2009:112
http://www.openwall.com/lists/oss-security/2009/04/29/6
http://www.openwall.com/lists/oss-security/2009/05/04/3
http://www.redhat.com/support/errata/RHSA-2009-1036.html
http://www.securityfocus.com/bid/34765
http://www.ubuntu.com/usn/USN-785-1
http://www.vupen.com/english/advisories/2009/3184
https://bugzilla.redhat.com/show_bug.cgi?id=497990
https://exchange.xforce.ibmcloud.com/vulnerabilities/50412
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9624
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00725.html
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00746.html
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg00789.html
Details
Source: MITRE
Published: 2009-05-06
Updated: 2017-09-29
Type: NVD-CWE-Other
Risk Information
CVSS v2
Base Score: 5
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Impact Score: 2.9
Exploitability Score: 10
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:ipsec-tools:ipsec-tools:0.1:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.2:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.2.1:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.2.2:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.2.3:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.2.4:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:rc1:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:rc2:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:rc3:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:rc4:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:rc5:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3.1:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3.2:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.3.3:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.4:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.4:rc1:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.5:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.2:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.3:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.4:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.5:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.6:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:0.7:*:*:*:*:*:*:*
cpe:2.3:a:ipsec-tools:ipsec-tools:*:*:*:*:*:*:*:* versions up to 0.7.1 (inclusive)
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 79457 | OracleVM 2.1 : ipsec-tools (OVMSA-2009-0010) | Nessus | OracleVM Local Security Checks | high |
| 67859 | Oracle Linux 5 : ipsec-tools (ELSA-2009-1036) | Nessus | Oracle Linux Local Security Checks | medium |
| 60585 | Scientific Linux Security Update : ipsec-tools on SL5.x i386/x86_64 | Nessus | Scientific Linux Local Security Checks | medium |
| 51759 | SuSE 10 Security Update : Novell ipsec tools (ZYPP Patch Number 6306) | Nessus | SuSE Local Security Checks | medium |
| 51342 | Apple Time Capsule and AirPort Base Station Firmware < 7.5.2 (APPLE-SA-2010-12-16-1) | Nessus | Misc. | high |
| 43749 | CentOS 5 : ipsec-tools (CESA-2009:1036) | Nessus | CentOS Local Security Checks | medium |
| 800795 | Mac OS X 10.6 < 10.6.2 Multiple Vulnerabilities | Log Correlation Engine | Operating System Detection | high |
| 5227 | Mac OS X 10.6 < 10.6.2 Multiple Vulnerabilities | Nessus Network Monitor | Generic | critical |
| 42434 | Mac OS X 10.6.x < 10.6.2 Multiple Vulnerabilities | Nessus | MacOS X Local Security Checks | critical |
| 42433 | Mac OS X Multiple Vulnerabilities (Security Update 2009-006) | Nessus | MacOS X Local Security Checks | critical |
| 42025 | openSUSE 10 Security Update : novell-ipsec-tools (novell-ipsec-tools-6307) | Nessus | SuSE Local Security Checks | medium |
| 41523 | SuSE 10 Security Update : ipsec-tools (ZYPP Patch Number 6301) | Nessus | SuSE Local Security Checks | medium |
| 41440 | SuSE 11 Security Update : Novell ipsec tools (SAT Patch Number 1006) | Nessus | SuSE Local Security Checks | medium |
| 41403 | SuSE 11 Security Update : ipsec-tools (SAT Patch Number 998) | Nessus | SuSE Local Security Checks | medium |
| 40283 | openSUSE Security Update : novell-ipsec-tools (novell-ipsec-tools-1007) | Nessus | SuSE Local Security Checks | medium |
| 40233 | openSUSE Security Update : ipsec-tools (ipsec-tools-996) | Nessus | SuSE Local Security Checks | medium |
| 40081 | openSUSE Security Update : novell-ipsec-tools (novell-ipsec-tools-1007) | Nessus | SuSE Local Security Checks | medium |
| 39993 | openSUSE Security Update : ipsec-tools (ipsec-tools-996) | Nessus | SuSE Local Security Checks | medium |
| 39514 | openSUSE 10 Security Update : ipsec-tools (ipsec-tools-6302) | Nessus | SuSE Local Security Checks | medium |
| 39353 | Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 : ipsec-tools vulnerabilities (USN-785-1) | Nessus | Ubuntu Local Security Checks | medium |
| 38884 | GLSA-200905-03 : IPSec Tools: Denial of Service | Nessus | Gentoo Local Security Checks | medium |
| 38861 | Debian DSA-1804-1 : ipsec-tools - NULL pointer dereference, memory leaks | Nessus | Debian Local Security Checks | medium |
| 38819 | RHEL 5 : ipsec-tools (RHSA-2009:1036) | Nessus | Red Hat Local Security Checks | medium |
| 38811 | Fedora 11 : ipsec-tools-0.7.2-1.fc11 (2009-4394) | Nessus | Fedora Local Security Checks | medium |
| 38810 | Fedora 10 : ipsec-tools-0.7.2-1.fc10 (2009-4298) | Nessus | Fedora Local Security Checks | medium |
| 38809 | Fedora 9 : ipsec-tools-0.7.2-1.fc9 (2009-4291) | Nessus | Fedora Local Security Checks | medium |
| 38767 | Mandriva Linux Security Advisory : ipsec-tools (MDVSA-2009:112-1) | Nessus | Mandriva Local Security Checks | medium |