CVE-2016-10396 -- ipsec-toolsID: oval:org.secpod.oval:def:1900527 | Date: (C)2019-02-27 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments.The implementation permits a remote attacker to exhaust computational resources on the remote endpoint by repeatedly sending ISAKMP fragment packets in a particular order such that the worst-case computational complexity is realized in the algorithm utilized to determine if reassembly of the fragments can take place.
Platform: |
Ubuntu 16.04 |
Ubuntu 14.04 |