<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos

Bugtraq: Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon

Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon

From: <itojun_at_kame.net>
Date: Fri, 16 Jan 2004 12:11:49 +0900 (JST)

> > 0 Preface
> >
> > Now that most bugs in isakmpd that allowed for unauthorized SA
> > deletion are "fixed", it's time to release some information on racoon.
> >
> > By the way: About 5 months ago I tried to contact the KAME developers.
> sorry that we did not take necessary actions that time. the attached
> patch should remedy the problem (credit: IIJ SEIL team).
> kame as well as netbsd repository are updated, and vendors are informed.

        the patch i've attached yesterday had endian problem (does not work on
        little-endian machine). if you are using the code, please pull the
        latest code from KAME anoncvs or ftp://ftp.kame.net/pub/kame/misc.
        sorry about the mess.

itojun
Received on Jan 16 2004

This message: [ Message body ]
Next message: JeiAr: "phpShop Vulnerabilities"
Previous message: OpenPKG: "[OpenPKG-SA-2004.002] OpenPKG Security Advisory (tcpdump)"
In reply to: itojun_at_kame.net: "Re: unauthorized deletion of IPsec (and ISAKMP) SAs in racoon"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]

edgeos