[security] Gento: Ipsec-tools and iputils contain a remote DoS vulnerability

Lorenzo Iannuzzi nakis a libero.it
Sab 24 Apr 2004 22:15:06 CEST


http://security.gentoo.org/glsa/glsa-200404-17.xml

racoon, which is included in the ipsec-tools and iputils packages in
Portage, does not check the length of ISAKMP headers. Attackers may be
able to craft an ISAKMP header of sufficient length to consume all
available system resoources, causing a Denial of Service.
-- 

Ciao e alla prossima!
Lorenzo




Maggiori informazioni sulla lista security