SUSE-SA:2005:070: ipsec-tools,freeswan,openswan

This script is Copyright (C) 2005-2010 Tenable Network Security, Inc.


Synopsis :

The remote host is missing a vendor-supplied security patch

Description :

The remote host is missing the patch for the advisory SUSE-SA:2005:070 (ipsec-tools,freeswan,openswan).


Openswan, Freeswan and raccoon (ipsec-tools) have been updated to fix
crashes in aggressive mode. An attacker might send specially crafted
packets that can crash racoon or Pluto.

The ipsec-tools / racoon crashes are tracked by the Mitre CVE ID
CVE-2005-3732.

The openswan / freeswan crashes are tracked by the Mitre CVE ID
CVE-2005-3671.

SUSE Linux Enterprise Server 8 and SUSE Linux 9.0 contain freeswan
1.x and seem no to be affected by this problem.

Solution :

http://www.suse.de/security/advisories/2005_70_ipsec.html

Risk factor :

Medium

Family: SuSE Local Security Checks

Nessus Plugin ID: 20369 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now