[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250038

 
 

909

 
 

195843

 
 

282

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-2789-1 strongswan -- Denial of service and authorization bypass

ID: oval:org.secpod.oval:def:601139Date: (C)2013-11-02   (M)2022-10-10
Class: PATCHFamily: unix




A vulnerability has been found in the ASN.1 parser of strongSwan, an IKE daemon used to establish IPsec protected links. By sending a crafted ID_DER_ASN1_DN ID payload to a vulnerable pluto or charon daemon, a malicious remote user can provoke a denial of service or an authorization bypass .

Platform:
Debian 7.0
Debian 6.0
Product:
strongswan
Reference:
DSA-2789-1
CVE-2013-6075
CVE    1
CVE-2013-6075
CPE    25
cpe:/a:strongswan:strongswan:4.3.6
cpe:/a:strongswan:strongswan:4.6.3
cpe:/a:strongswan:strongswan:4.3.5
cpe:/a:strongswan:strongswan:4.5.3
...

© SecPod Technologies