IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service (infinite loop and system hang) via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Safenet_highassurance_remote | Safenet | 1.4.0_build_12 (including) | 1.4.0_build_12 (including) |
| Softremote_vpn_client | Safenet | 1.4 (including) | 1.4 (including) |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-June/063859.html
- http://osvdb.org/37137
- http://secunia.com/advisories/25574
- http://securityreason.com/securityalert/2803
- http://www.digit-labs.org/files/exploits/safenet-dos.c
- http://www.securityfocus.com/bid/24385
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34775
- http://lists.grok.org.uk/pipermail/full-disclosure/2007-June/063859.html
- http://osvdb.org/37137
- http://secunia.com/advisories/25574
- http://securityreason.com/securityalert/2803
- http://www.digit-labs.org/files/exploits/safenet-dos.c
- http://www.securityfocus.com/bid/24385
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34775