FreeBSD Local Security Checks : FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 145615 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.56454

Categoría: FreeBSD Local Security Checks

Título: FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)

Resumen: The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc

Descripción: Summary:
The remote host is missing an update to the system
as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc

Vulnerability Insight:
IPsec is a set of protocols, including ESP (Encapsulating Security Payload)
and AH (Authentication Header), that provide security services for IP
datagrams. ESP protects IP payloads from wire-tapping by encrypting them
using secret key cryptography algorithms. AH guarantees the integrity of IP
packets and protects them from intermediate alteration or impersonation by
attaching a cryptographic checksum computed using one-way hash functions.

IPsec provides an anti-replay service which when enabled prevents an attacker
from successfully executing a replay attack. This is done through the
verification of sequence numbers. A programming error in the fast_ipsec(4)
implementation results in the sequence number associated with a Security
Association not being updated, allowing packets to unconditionally pass
sequence number verification checks.

Solution:
Upgrade your system to the appropriate stable release
or security branch dated after the correction date.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2006-0905
BugTraq ID: 17191
http://www.securityfocus.com/bid/17191
FreeBSD Security Advisory: FreeBSD-SA-06:11
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc
NETBSD Security Advisory: NetBSD-SA2006-011
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-011.txt.asc
http://www.osvdb.org/24068
http://securitytracker.com/id?1015809
http://secunia.com/advisories/19366
XForce ISS Database: bsd-ipsec-replay(25398)
https://exchange.xforce.ibmcloud.com/vulnerabilities/25398

Copyright Copyright (C) 2008 E-Soft Inc.

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.56454
Categoría:	FreeBSD Local Security Checks
Título:	FreeBSD Security Advisory (FreeBSD-SA-06:11.ipsec.asc)
Resumen:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc
Descripción:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-06:11.ipsec.asc Vulnerability Insight: IPsec is a set of protocols, including ESP (Encapsulating Security Payload) and AH (Authentication Header), that provide security services for IP datagrams. ESP protects IP payloads from wire-tapping by encrypting them using secret key cryptography algorithms. AH guarantees the integrity of IP packets and protects them from intermediate alteration or impersonation by attaching a cryptographic checksum computed using one-way hash functions. IPsec provides an anti-replay service which when enabled prevents an attacker from successfully executing a replay attack. This is done through the verification of sequence numbers. A programming error in the fast_ipsec(4) implementation results in the sequence number associated with a Security Association not being updated, allowing packets to unconditionally pass sequence number verification checks. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2006-0905 BugTraq ID: 17191 http://www.securityfocus.com/bid/17191 FreeBSD Security Advisory: FreeBSD-SA-06:11 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:11.ipsec.asc NETBSD Security Advisory: NetBSD-SA2006-011 ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-011.txt.asc http://www.osvdb.org/24068 http://securitytracker.com/id?1015809 http://secunia.com/advisories/19366 XForce ISS Database: bsd-ipsec-replay(25398) https://exchange.xforce.ibmcloud.com/vulnerabilities/25398
Copyright	Copyright (C) 2008 E-Soft Inc.