Computer Security
[EN] securityvulns.ru no-pyccku


strongswan authentication bypass
updated since 03.06.2012
Published:03.06.2012
Source:
SecurityVulns ID:12398
Type:remote
Threat Level:
5/10
Description:Invalid authentication data check if gmp plugin is used.
Affected:STRONGSWAN : strongswan 4.4
CVE:CVE-2012-2388 (The GMP Plugin in strongSwan 4.2.0 through 4.6.3 allows remote attackers to bypass authentication via a (1) empty or (2) zeroed RSA signature, aka "RSA signature verification vulnerability.")
Original documentdocumentDEBIAN, [SECURITY] [DSA 2483-1] strongswan security update (03.06.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod