 |
Startseite ▼ Bookkeeping
Online ▼ Sicherheits
Überprüfungs ▼
Verwaltetes
DNS ▼
Info
Bestellen/Erneuern
FAQ
AUP
Dynamic DNS Clients
Domaine konfigurieren Dyanmic DNS Update Password Netzwerk
Überwachung ▼
Enterprise
Erweiterte
Standard
Gratis Test
FAQ
Preis/Funktionszusammenfassung
Bestellen
Beispiele
Konfigurieren/Status Alarm Profile | ||
| Test Kennung: | 1.3.6.1.4.1.25623.1.0.54556 |
| Kategorie: | Gentoo Local Security Checks |
| Titel: | Gentoo Security Advisory GLSA 200404-17 (ipsec-utils) |
| Zusammenfassung: | NOSUMMARY |
| Beschreibung: | Description: The remote host is missing updates announced in advisory GLSA 200404-17. racoon, which is included in the ipsec-tools and iputils packages in Portage, does not check the length of ISAKMP headers. Attackers may be able to craft an ISAKMP header of sufficient length to consume all available system resoources, causing a Denial of Service. Solution: ipsec-tools users should upgrade to version 0.2.5 or later: # emerge sync # emerge -pv '>=net-firewall/ipsec-tools-0.3.1' # emerge '>=net-firewall/ipsec-tools-0.3.1' iputils users should upgrade to version 021109-r3 or later: # emerge sync # emerge -pv '>=net-misc/iputils-021109-r3' # emerge '>=net-misc/iputils-021109-r3' http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200404-17 http://bugs.gentoo.org/show_bug.cgi?id=48847 http://ipsec-tools.sourceforge.net/ CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Querverweis: |
BugTraq ID: 10172 Common Vulnerability Exposure (CVE) ID: CVE-2004-0403 http://marc.info/?l=bugtraq&m=108369640424244&w=2 http://www.securityfocus.com/bid/10172 http://security.gentoo.org/glsa/glsa-200404-17.xml http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069 http://www.osvdb.org/5491 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984 http://www.redhat.com/support/errata/RHSA-2004-165.html SCO Security Bulletin: SCOSA-2005.10 ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt http://securitytracker.com/id?1009937 http://secunia.com/advisories/11410 http://secunia.com/advisories/11877 SGI Security Advisory: 20040506-01-U ftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.asc XForce ISS Database: racoon-isakmp-dos(15893) https://exchange.xforce.ibmcloud.com/vulnerabilities/15893 |
| Copyright | Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com |
| Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten. |