|
|
Family: Gentoo Local Security Checks --> Category: infos
[GLSA-200406-17] IPsec-Tools: authentication bug in racoon Vulnerability Scan
Vulnerability Scan Summary
IPsec-Tools: authentication bug in racoon
Detailed Explanation for this Vulnerability Test
The remote host is affected by the vulnerability described in GLSA-200406-17
(IPsec-Tools: authentication bug in racoon)
The KAME IKE daemon racoon is used to authenticate peers during Phase 1
when using either preshared keys, GSS-API, or RSA signatures. When using
RSA signatures racoon validates the X.509 certificate but not the RSA
signature.
Impact
By sending a valid and trusted X.509 certificate and any private key an
attacker could exploit this vulnerability to perform man-in-the-middle
attacks and initiate unauthorized connections.
Workaround
There is no known workaround at this time. All users are encouraged to
upgrade to the latest available version.
References:
http://ipsec-tools.sourceforge.net/x509sig.html
Solution:
All IPsec-Tools users should upgrade to the latest stable version:
# emerge sync
# emerge -pv ">=net-firewall/ipsec-tools-0.3.3"
# emerge ">=net-firewall/ipsec-tools-0.3.3"
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
