The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Ipsec-tools | Ipsec-tools | 0.5 (including) | 0.5 (including) |
Ipsec-tools | Ipsec-tools | 0.5.1 (including) | 0.5.1 (including) |
Ipsec-tools | Ipsec-tools | 0.5.2 (including) | 0.5.2 (including) |
Ipsec-tools | Ipsec-tools | 0.6 (including) | 0.6 (including) |
Ipsec-tools | Ipsec-tools | 0.6.1 (including) | 0.6.1 (including) |
Ipsec-tools | Ipsec-tools | 0.6.2 (including) | 0.6.2 (including) |