Family: SuSE Local Security Checks --> Category: infos
SUSE-SA:2005:070: ipsec-tools,freeswan,openswan Vulnerability Scan
Vulnerability Scan Summary
Check for the version of the ipsec-tools,freeswan,openswan package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory SUSE-SA:2005:070 (ipsec-tools,freeswan,openswan).
Openswan, Freeswan and raccoon (ipsec-tools) have been updated to fix
crashes in aggressive mode. A possible hacker might send specially crafted
packets that can crash racoon or Pluto.
The ipsec-tools / racoon crashes are tracked by the Mitre CVE ID
The openswan / freeswan crashes are tracked by the Mitre CVE ID
SUSE Linux Enterprise Server 8 and SUSE Linux 9.0 contain freeswan
1.x and seem no to be affected by this problem.
Solution : http://www.suse.de/security/advisories/2005_70_ipsec.html
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.