Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:020: ipsec-tools Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ipsec-tools package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:020 (ipsec-tools).
Racoon is a ISAKMP key management daemon used in IPsec setups.
Sebastian Krahmer of the SUSE Security Team audited the daemon and
found that it handles certain ISAKMP messages in a slightly wrong way,
so that remote attackers can crash it via malformed ISAKMP packages.
This update fixes this problem.
This is tracked by the Mitre CVE ID CVE-2005-0398.
Solution : http://www.suse.de/security/advisories/2005_20_ipsec_tools.html
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.