KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Racoon | Kame | all_versions (including) | all_versions (including) |
Red Hat Enterprise Linux 3 | RedHat | ipsec-tools-0:0.2.5-0.4 | * |