Test ID:	1.3.6.1.4.1.25623.1.0.59137
Category:	Ubuntu Local Security Checks
Title:	Ubuntu USN-450-1 (ipsec-tools)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to ipsec-tools announced via advisory USN-450-1. A security issue affects the following Ubuntu releases: Ubuntu 5.10 Ubuntu 6.06 LTS Ubuntu 6.10 This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu. Details follow: A flaw was discovered in the IPSec key exchange server racoon. Remote attackers could send a specially crafted packet and disrupt established IPSec tunnels, leading to a denial of service. Solution: The problem can be corrected by upgrading your system to the following package versions: Ubuntu 5.10: racoon 1:0.6-1ubuntu1.2 Ubuntu 6.06 LTS: racoon 1:0.6.5-4ubuntu1.1 Ubuntu 6.10: racoon 1:0.6.6-1ubuntu1.1 In general, a standard system upgrade is sufficient to effect the necessary changes. http://www.securityspace.com/smysecure/catid.html?in=USN-450-1 Risk factor : Medium CVSS Score: 4.3
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1841 BugTraq ID: 23394 http://www.securityfocus.com/bid/23394 Debian Security Information: DSA-1299 (Google Search) http://www.debian.org/security/2007/dsa-1299 http://security.gentoo.org/glsa/glsa-200705-09.xml http://www.mandriva.com/security/advisories?name=MDKSA-2007:084 http://sourceforge.net/mailarchive/message.php?msg_name=20070406123739.GA1546%40zen.inc https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10504 RedHat Security Advisories: RHSA-2007:0342 https://rhn.redhat.com/errata/RHSA-2007-0342.html http://www.securitytracker.com/id?1018086 http://secunia.com/advisories/24815 http://secunia.com/advisories/24826 http://secunia.com/advisories/24833 http://secunia.com/advisories/25072 http://secunia.com/advisories/25142 http://secunia.com/advisories/25322 http://secunia.com/advisories/25560 SuSE Security Announcement: SUSE-SR:2007:008 (Google Search) http://www.novell.com/linux/security/advisories/2007_8_sr.html http://www.ubuntu.com/usn/usn-450-1 http://www.vupen.com/english/advisories/2007/1310 XForce ISS Database: ipsectools-isakmpinforecv-dos(33541) https://exchange.xforce.ibmcloud.com/vulnerabilities/33541
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.