The AES-XCBC-MAC algorithm in IPsec in FreeBSD 5.3 and 5.4, when used for authentication without other encryption, uses a constant key instead of the one that was assigned by the system administrator, which can allow remote attackers to spoof packets to establish an IPsec session.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Freebsd | Freebsd | 5.3 (including) | 5.3 (including) |
| Freebsd | Freebsd | 5.4 (including) | 5.4 (including) |
| Kfreebsd-5 | Ubuntu | dapper | * |
| Kfreebsd-5 | Ubuntu | devel | * |
| Kfreebsd-5 | Ubuntu | edgy | * |
| Kfreebsd-5 | Ubuntu | feisty | * |
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:19.ipsec.asc
- http://secunia.com/advisories/16244/
- http://securitytracker.com/id?1014586
- http://www.securityfocus.com/bid/14394
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21551
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-05:19.ipsec.asc
- http://secunia.com/advisories/16244/
- http://securitytracker.com/id?1014586
- http://www.securityfocus.com/bid/14394
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21551