- EPSS 2.43%
- Veröffentlicht 14.03.2005 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:11:02
The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.
- EPSS 5.44%
- Veröffentlicht 06.12.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:58
The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.
- EPSS 2.49%
- Veröffentlicht 14.06.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:32
racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERV...
CVE-2004-0155
- EPSS 3.63%
- Veröffentlicht 01.06.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:03
The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-...
- EPSS 2.85%
- Veröffentlicht 01.06.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:34
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
- EPSS 6.66%
- Veröffentlicht 03.03.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:04
KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message th...