OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
BID:10029
Info
OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
| Bugtraq ID: | 10029 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2004-0219 |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 17 2004 12:00AM |
| Updated: | Jul 12 2009 04:06AM |
| Credit: | This issue was first publicly reported by the vendor. |
| Vulnerable: |
OpenBSD OpenBSD 3.4 OpenBSD OpenBSD 3.3 OpenBSD OpenBSD -current |
| Not Vulnerable: | |
Discussion
OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
OpenBSD is prone to a vulnerability that would allow an attacker to cause the isakmpd daemon to crash, denying service to legitimate users. This issue is due to a failure of the process to handle malformed isakmp packets.
This issue was previously reported in OpenBSD isakmpd Multiple Unspecified Remote Denial Of Service Vulnerabilities (BID 9907). That BID will be retired.
OpenBSD is prone to a vulnerability that would allow an attacker to cause the isakmpd daemon to crash, denying service to legitimate users. This issue is due to a failure of the process to handle malformed isakmp packets.
This issue was previously reported in OpenBSD isakmpd Multiple Unspecified Remote Denial Of Service Vulnerabilities (BID 9907). That BID will be retired.
Exploit / POC
OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution / Fix
OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
Solution:
The vendor has supplied patches to address these issue:
OpenBSD OpenBSD 3.4
OpenBSD OpenBSD 3.3
Solution:
The vendor has supplied patches to address these issue:
OpenBSD OpenBSD 3.4
-
OpenBSD 015_isakmpd2.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.4/common/015_isakmpd2.patc h
OpenBSD OpenBSD 3.3
-
OpenBSD 020_isakmpd2.patch
ftp://ftp.openbsd.org/pub/OpenBSD/patches/3.3/common/020_isakmpd2.patc h
References
OpenBSD ISAKMPD Malformed IPSEC SA Payload Denial Of Service Vulnerability
References:
References: