FreeBSD Local Security Checks : FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.56454

Kategorie: FreeBSD Local Security Checks

Titel: FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

Zusammenfassung: The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc

Beschreibung: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc

Vulnerability Insight:
IPsec is a set of protocols, including ESP (Encapsulating Security Payload)
and AH (Authentication Header), that provide security services for IP
datagrams. ESP protects IP payloads from wire-tapping by encrypting them
using secret key cryptography algorithms. AH guarantees the integrity of IP
packets and protects them from intermediate alteration or impersonation by
attaching a cryptographic checksum computed using one-way hash functions.

IPsec provides an anti-replay service which when enabled prevents an attacker
from successfully executing a replay attack. This is done through the
verification of sequence numbers. A programming error in the fast_ipsec(4)
implementation results in the sequence number associated with a Security
Association not being updated, allowing packets to unconditionally pass
sequence number verification checks.

Solution:
Upgrade your system to the appropriate stable release
or security branch dated after the correction date.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2006-0905
BugTraq ID: 17191
http://www.securityfocus.com/bid/17191
FreeBSD Security Advisory: FreeBSD-SA-06:11
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc
NETBSD Security Advisory: NetBSD-SA2006-011
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-011.txt.asc
http://www.osvdb.org/24068
http://securitytracker.com/id?1015809
http://secunia.com/advisories/19366
XForce ISS Database: bsd-ipsec-replay(25398)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25398

Copyright Copyright (C) 2008 E-Soft Inc.

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.56454
Kategorie:	FreeBSD Local Security Checks
Titel:	FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)
Zusammenfassung:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc
Beschreibung:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc Vulnerability Insight: IPsec is a set of protocols, including ESP (Encapsulating Security Payload) and AH (Authentication Header), that provide security services for IP datagrams. ESP protects IP payloads from wire-tapping by encrypting them using secret key cryptography algorithms. AH guarantees the integrity of IP packets and protects them from intermediate alteration or impersonation by attaching a cryptographic checksum computed using one-way hash functions. IPsec provides an anti-replay service which when enabled prevents an attacker from successfully executing a replay attack. This is done through the verification of sequence numbers. A programming error in the fast_ipsec(4) implementation results in the sequence number associated with a Security Association not being updated, allowing packets to unconditionally pass sequence number verification checks. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0905 BugTraq ID: 17191 http://www.securityfocus.com/bid/17191 FreeBSD Security Advisory: FreeBSD-SA-06:11 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc NETBSD Security Advisory: NetBSD-SA2006-011 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-011.txt.asc http://www.osvdb.org/24068 http://securitytracker.com/id?1015809 http://secunia.com/advisories/19366 XForce ISS Database: bsd-ipsec-replay(25398) https://exchange.xforce.ibmcloud.com/vulnerabilities/25398
Copyright	Copyright (C) 2008 E-Soft Inc.