Mandrake Local Security Checks : Mandrake Security Advisory MDKSA-2004:069 (ipsec-tools)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.50552

Categoría: Mandrake Local Security Checks

Título: Mandrake Security Advisory MDKSA-2004:069 (ipsec-tools)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to ipsec-tools
announced via advisory MDKSA-2004:069.

A vulnerability in racoon prior to version 20040408a would allow a
remote attacker to cause a DoS (memory consumption) via an ISAKMP
packet with a large length field.

Another vulnerability in racoon was discovered where, when using RSA
signatures, racoon would validate the X.509 certificate but would not
validate the signature. This can be exploited by an attacker sending
a valid and trusted X.509 certificate and any private key. Using this,
they could perform a man-in-the-middle attack and initiate an
unauthorized connection. This has been fixed in ipsec-tools 0.3.3.

The updated packages contain patches backported from 0.3.3 to correct
the problem.

Affected versions: 10.0

Solution:
To upgrade automatically use MandrakeUpdate or urpmi. The verification
of md5 checksums and GPG signatures is performed automatically for you.

http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2004:069
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0403

Risk factor : Medium

CVSS Score:
5.0

Referencia Cruzada: BugTraq ID: 10172
Common Vulnerability Exposure (CVE) ID: CVE-2004-0403
http://marc.info/?l=bugtraq&m=108369640424244&w=2
http://www.securityfocus.com/bid/10172
http://security.gentoo.org/glsa/glsa-200404-17.xml
http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069
http://www.osvdb.org/5491
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984
http://www.redhat.com/support/errata/RHSA-2004-165.html
SCO Security Bulletin: SCOSA-2005.10
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt
http://securitytracker.com/id?1009937
http://secunia.com/advisories/11410
http://secunia.com/advisories/11877
SGI Security Advisory: 20040506-01-U
ftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.asc
XForce ISS Database: racoon-isakmp-dos(15893)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15893

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.50552
Categoría:	Mandrake Local Security Checks
Título:	Mandrake Security Advisory MDKSA-2004:069 (ipsec-tools)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to ipsec-tools announced via advisory MDKSA-2004:069. A vulnerability in racoon prior to version 20040408a would allow a remote attacker to cause a DoS (memory consumption) via an ISAKMP packet with a large length field. Another vulnerability in racoon was discovered where, when using RSA signatures, racoon would validate the X.509 certificate but would not validate the signature. This can be exploited by an attacker sending a valid and trusted X.509 certificate and any private key. Using this, they could perform a man-in-the-middle attack and initiate an unauthorized connection. This has been fixed in ipsec-tools 0.3.3. The updated packages contain patches backported from 0.3.3 to correct the problem. Affected versions: 10.0 Solution: To upgrade automatically use MandrakeUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. http://www.securityspace.com/smysecure/catid.html?in=MDKSA-2004:069 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0403 Risk factor : Medium CVSS Score: 5.0
Referencia Cruzada:	BugTraq ID: 10172 Common Vulnerability Exposure (CVE) ID: CVE-2004-0403 http://marc.info/?l=bugtraq&m=108369640424244&w=2 http://www.securityfocus.com/bid/10172 http://security.gentoo.org/glsa/glsa-200404-17.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069 http://www.osvdb.org/5491 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984 http://www.redhat.com/support/errata/RHSA-2004-165.html SCO Security Bulletin: SCOSA-2005.10 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt http://securitytracker.com/id?1009937 http://secunia.com/advisories/11410 http://secunia.com/advisories/11877 SGI Security Advisory: 20040506-01-U ftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.asc XForce ISS Database: racoon-isakmp-dos(15893) https://exchange.xforce.ibmcloud.com/vulnerabilities/15893
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com