Known Vulnerabilities for products from Kame

Listed below are 8 of the newest known vulnerabilities associated with the vendor "Kame".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2008-2464	The mld_input function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows r...	7.1 - HIGH	2008-09-11	2023-11-07
CVE-2008-0177	The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the ret...	7.8 - HIGH	2008-02-07	2023-11-07
CVE-2005-0398	The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed I...	5 - MEDIUM	2005-03-14	2017-10-11
CVE-2004-0607	The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which c...	10 - HIGH	2004-12-06	2017-10-11
CVE-2004-0403	Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a...	5 - MEDIUM	2004-06-01	2017-10-11
CVE-2004-0392	racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an I...	5 - MEDIUM	2004-06-14	2017-07-11
CVE-2004-0164	KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a...	5 - MEDIUM	2004-03-03	2017-10-11
CVE-2004-0155	The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify th...	7.5 - HIGH	2004-06-01	2017-10-11