CVE		CVE-2008-3652
Status		Candidate
Description		src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remotely, which allows remote attackers to cause a denial of service (resource consumption).
Phase		Assigned (12.08.2008)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-3652
References		MLIST : [ipsec-tools-devel] 20080811 [PATCH] Track and delete orphaned ph1s
		SECUNIA : 31478
SecurityVulns:		Apple Mac OS X multiple security vulnerabilities
		ipsec-tools / racoon IPSec DoS