Medium Nessus Plugin ID 17671
SynopsisThe remote host is missing a vendor-supplied security patch
DescriptionThe remote host is missing the patch for the advisory SUSE-SA:2005:020 (ipsec-tools).
Racoon is a ISAKMP key management daemon used in IPsec setups.
Sebastian Krahmer of the SUSE Security Team audited the daemon and found that it handles certain ISAKMP messages in a slightly wrong way, so that remote attackers can crash it via malformed ISAKMP packages.
This update fixes this problem.
This is tracked by the Mitre CVE ID CVE-2005-0398.