Computer Security
[EN] securityvulns.ru no-pyccku


ipsec-tools / racoon IPSec DoS
Published:01.09.2008
Source:
SecurityVulns ID:9251
Type:remote
Threat Level:
7/10
Description:DoS attack with memory exhaustion.
CVE:CVE-2008-3652 (src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remotely, which allows remote attackers to cause a denial of service (resource consumption).)
 CVE-2008-3651 (Memory leak in racoon/proposal.c in the racoon daemon in ipsec-tools before 0.7.1 allows remote authenticated users to cause a denial of service (memory consumption) via invalid proposals.)
Original documentdocumentMANDRIVA, [email protected] (01.09.2008)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod