Test ID:	1.3.6.1.4.1.25623.1.0.54441
Category:	FreeBSD Local Security Checks
Title:	FreeBSD Security Advisory (FreeBSD-SA-05:19.ipsec.asc)
Summary:	The remote host is missing an update to the system; as announced in the referenced advisory FreeBSD-SA-05:19.ipsec.asc
Description:	Summary: The remote host is missing an update to the system as announced in the referenced advisory FreeBSD-SA-05:19.ipsec.asc Vulnerability Insight: IPsec is a security protocol for the Internet Protocol networking layer. It provides a combination of encryption and authentication of system, using several possible cryptography algorithms. A programming error in the implementation of the AES-XCBC-MAC algorithm for authentication resulted in a constant key being used instead of the key specified by the system administrator. Solution: Upgrade your system to the appropriate stable release or security branch dated after the correction date. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2005-2359 BugTraq ID: 14394 http://www.securityfocus.com/bid/14394 FreeBSD Security Advisory: FreeBSD-SA-05:19 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:19.ipsec.asc http://securitytracker.com/id?1014586 http://secunia.com/advisories/16244/ XForce ISS Database: freebsd-aesxcbcmac-security-bypass(21551) https://exchange.xforce.ibmcloud.com/vulnerabilities/21551
Copyright	Copyright (C) 2008 E-Soft Inc.

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.