Novell BorderManager ISAKMP Predictable Cookie Vulnerability

BID:21014

Info

Novell BorderManager ISAKMP Predictable Cookie Vulnerability

Bugtraq ID: 21014
Class: Design Error
CVE: CVE-2006-7155
Remote: Yes
Local: No
Published: Nov 10 2006 12:00AM
Updated: Jul 06 2016 02:40PM
Credit: The vendor reported this issue.
Vulnerable: Novell BorderManager 3.8 SP4
Not Vulnerable: Novell BorderManager 3.8 SP5

Discussion

Novell BorderManager ISAKMP Predictable Cookie Vulnerability

Novell BorderManager is prone to a vulnerability that causes the software to create predictable ISAKMP cookies.

Exploiting this vulnerability may lead to various attacks including denial-of-service conditions and replay attacks that allow attackers to gain unauthorized access to sessions. Other attacks may be possible as well.

Novell BorderManager 3.8 Support Pack 4 is reported vulnerable; prior versions may also be affected.

This issue may be related to BID 20428 (Novell BorderManager IPSec/IKE Remote Denial Of Service Vulnerability). If further analysis reveals that these issues are identical, this BID will be retired.

Exploit / POC

Novell BorderManager ISAKMP Predictable Cookie Vulnerability

This issue can be triggered using the 'ike-scan' utility available at the following location:

http://www.nta-monitor.com/tools/ike-scan/

Solution / Fix

Novell BorderManager ISAKMP Predictable Cookie Vulnerability

Solution:
The vendor has released fixes to address this issue. Please see the referenced vendor advisory for more information.

References

Novell BorderManager ISAKMP Predictable Cookie Vulnerability

References:
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

Free CVE JSON API cve.report/api

CVE.report and Source URL Uptime Status status.cve.report