Multiple OSs, routers and firewalls IPSec ISAKMP IKE DoS updated since 14.11.2005
Published:		11.12.2005
Source:		FULL-DISCLOSURE
SecurityVulns ID:		5447
Type:		remote
Level:		6/10
Description:		Multiple vulnerabilities detected with PROTOS IPSec security scanner.

Affected:		HP : HP-UX 11.00
		CISCO : IOS 12.2
		HP : HP-UX 11.11
		ORACLE : Solaris 9
		CISCO : PIX 6.3
		CISCO : IOS 12.3
		ORACLE : Solaris 10
		CISCO : Cisco VPN 3000
		HP : HP-UX 11.23
		CHECKPOINT : VPN-1 R54
		CHECKPOINT : VPN-1 R55
		SYMANTEC : Symantec Enterprise Firewall 8.0
		CHECKPOINT : Firewall-1 R55
		JUNIPER : JunOS 5.2
		JUNIPER : JunOS 5.3
		JUNIPER : JunOS 7.0
		SYMANTEC : Symantec Firewall Appliance 200
		SYMANTEC : Symantec VPN Appliance 200
		CISCO : IOS 12.4
		SCO : OpenServer 6.0
		CISCO : PIX 7.0
		CISCO : FWSM 2.3
		CISCO : SanOS 2.1
		SECGO : Secgo Crypto IP Gateway 3.2
		SECGO : Secgo Crypto IP Gateway 3.1
		SECGO : Secgo Crypto IP Gateway 3.0
		SECGO : Secgo Crypto IP Gateway 2.3
		SECGO : Secgo Crypto IP Client 2.3
		SECGO : Secgo Crypto IP Client 3.0
		SECGO : Secgo Crypto IP Client 3.1
		SECGO : Secgo Crypto IP Client 3.2
		JUNIPER : JunOS 6.0
		JUNIPER : JunOS 6.1
		JUNIPER : JunOS 7.1
		STONEGATE : StoneGate Firewall 2.6
		STONEGATE : StoneGate VPN Client 2.6
		OPENSWAN : Openswan 2.4
		NORTEL : Nortel Switched Firewall 5000
		NORTEL : Nortel Switched Firewall 5100
		NORTEL : Nortel Switched Firewall 6000
		HP : Jetdirect 635n
		CHECKPOINT : Firewall-1 R54
		CHECKPOINT : VPN-1 Pro NGX R60
		CHECKPOINT : Check Point Express CI R57
		CHECKPOINT : Firewall-1 GX 3.0
		SYMANTEC : Symantec Gateway Security 400
		SYMANTEC : Symantec Gateway Security 300
		SYMANTEC : Symantec Gateway Security 5100
		SYMANTEC : Symantec Gateway Security 5200
		SYMANTEC : Symantec Gateway Security 5300
		SYMANTEC : Symantec Gateway Security 5310
		SYMANTEC : Symantec Gateway Security 5400
		SYMANTEC : Symantec Gateway Security 5000
		SYMANTEC : Symantec Firewall Appliance 100
		SYMANTEC : Symantec VPN Appliance 100
		IPSECTOOLS : IPsec-Tools 0.6
		CLAVISTER : Clavister Firewall 8.30
		CLAVISTER : Clavister Security Gateway 8.40
		CLAVISTER : Clavister Security Gateway 8.50
		CLAVISTER : Clavister Security Gateway 8.60
		APANI : EpiForce 1.9

Original document		mkuch_(at)_apani.com, Apani Network Response to ISAKMP cert-fi:7710 Alert (11.12.2005)
		SCO, [Full-disclosure] SCOSA-2005.52 OpenServer 6.0.0 : KAME Racoon Daemon Denial of Service Vulnerability (28.11.2005)
		SECUNIA, [SA17663] Clavister Products ISAKMP IKE Message Processing Denial of Service (24.11.2005)
		SECUNIA, [SA17668] IPsec-Tools ISAKMP IKE Message Processing Denial of Service (23.11.2005)
		SECUNIA, [SA17684] Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service (23.11.2005)
		SECUNIA, [SA17621] Check Point Firewall/VPN ISAKMP IKE Message Processing Denial of Service (17.11.2005)
		HP, [security bulletin] SSRT5979 - HP Jetdirect 635n IPv6/IPsec Print Server (J7961A) Remote Denial of Service (DoS) (17.11.2005)
		HP, [security bulletin] SSRT5979 - HP-UX Running IPSec Remote Denial of Service (DoS) (17.11.2005)
		SECUNIA, [SA17608] Nortel Switched Firewall ISAKMP IKE Message Processing Denial of Service (16.11.2005)
		SECUNIA, [SA17554] Sun Solaris in.iked ISAKMP IKE Message Processing Denial of Service (15.11.2005)
		SECUNIA, [SA17581] Openswan ISAKMP IKE Message Processing Denial of Service (15.11.2005)
		SECUNIA, [SA17566] StoneGate Firewall and VPN ISAKMP IKE Message Processing Denial of Service (15.11.2005)
		SECUNIA, [SA17568] Juniper JUNOS/JUNOSe ISAKMP IKE Message Processing Denial of Service (15.11.2005)
		SECUNIA, [SA17567] Secgo Crypto IP Gateway/Client ISAKMP IKE Message Processing Vulnerability (15.11.2005)
		SECUNIA, [SA17553] Cisco ISAKMP IKE Message Processing Denial of Service (15.11.2005)
		CISCO, [Full-disclosure] Cisco Security Advisory: Multiple Vulnerabilities Found by PROTOS IPSec Test Suite (14.11.2005)

Discuss:

Read or add your comments to this news (0 comments)