This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/a:strongswan:strongswan
Detail
VendorStrongswanFirst view 2004-12-06
ProductStrongswanLast view 2014-05-07
VersionTypeApplication
Edition 
Language 
Update 

Activity : Overall

COMMON PLATFORM ENUMERATION : Repartition per Version

This CPE Product have more than 100 Versions. If you want to see a complete summary for this CPE, please contact us.
CPE NameAffected CVE
cpe:/a:strongswan:strongswan:5.1.21
cpe:/a:strongswan:strongswan:5.1.12
cpe:/a:strongswan:strongswan:5.1.04
cpe:/a:strongswan:strongswan:5.0.45
cpe:/a:strongswan:strongswan:5.0.35
Hide | Show 95 More...
CPE NameAffected CVE
cpe:/a:strongswan:strongswan:5.0.26
cpe:/a:strongswan:strongswan:5.0.15
cpe:/a:strongswan:strongswan:5.0.05
cpe:/a:strongswan:strongswan:4.6.43
cpe:/a:strongswan:strongswan:4.6.34
cpe:/a:strongswan:strongswan:4.6.24
cpe:/a:strongswan:strongswan:4.6.14
cpe:/a:strongswan:strongswan:4.6.04
cpe:/a:strongswan:strongswan:4.5.34
cpe:/a:strongswan:strongswan:4.5.24
cpe:/a:strongswan:strongswan:4.5.14
cpe:/a:strongswan:strongswan:4.5.04
cpe:/a:strongswan:strongswan:4.4.14
cpe:/a:strongswan:strongswan:4.4.05
cpe:/a:strongswan:strongswan:4.3.73
cpe:/a:strongswan:strongswan:4.3.65
cpe:/a:strongswan:strongswan:4.3.55
cpe:/a:strongswan:strongswan:4.3.45
cpe:/a:strongswan:strongswan:4.3.35
cpe:/a:strongswan:strongswan:4.3.25
cpe:/a:strongswan:strongswan:4.3.16
cpe:/a:strongswan:strongswan:4.3.07
cpe:/a:strongswan:strongswan:4.2.96
cpe:/a:strongswan:strongswan:4.2.86
cpe:/a:strongswan:strongswan:4.2.76
cpe:/a:strongswan:strongswan:4.2.67
cpe:/a:strongswan:strongswan:4.2.57
cpe:/a:strongswan:strongswan:4.2.47
cpe:/a:strongswan:strongswan:4.2.38
cpe:/a:strongswan:strongswan:4.2.28
cpe:/a:strongswan:strongswan:4.2.164
cpe:/a:strongswan:strongswan:4.2.155
cpe:/a:strongswan:strongswan:4.2.145
cpe:/a:strongswan:strongswan:4.2.137
cpe:/a:strongswan:strongswan:4.2.127
cpe:/a:strongswan:strongswan:4.2.117
cpe:/a:strongswan:strongswan:4.2.108
cpe:/a:strongswan:strongswan:4.2.19
cpe:/a:strongswan:strongswan:4.2.09
cpe:/a:strongswan:strongswan:4.1.95
cpe:/a:strongswan:strongswan:4.1.85
cpe:/a:strongswan:strongswan:4.1.75
cpe:/a:strongswan:strongswan:4.1.65
cpe:/a:strongswan:strongswan:4.1.55
cpe:/a:strongswan:strongswan:4.1.45
cpe:/a:strongswan:strongswan:4.1.35
cpe:/a:strongswan:strongswan:4.1.25
cpe:/a:strongswan:strongswan:4.1.116
cpe:/a:strongswan:strongswan:4.1.105
cpe:/a:strongswan:strongswan:4.1.15
cpe:/a:strongswan:strongswan:4.1.05
cpe:/a:strongswan:strongswan:4.12
cpe:/a:strongswan:strongswan:4.0.75
cpe:/a:strongswan:strongswan:4.0.64
cpe:/a:strongswan:strongswan:4.0.54
cpe:/a:strongswan:strongswan:4.0.44
cpe:/a:strongswan:strongswan:4.0.34
cpe:/a:strongswan:strongswan:4.0.24
cpe:/a:strongswan:strongswan:4.0.14
cpe:/a:strongswan:strongswan:4.0.04
cpe:/a:strongswan:strongswan:2.8.92
cpe:/a:strongswan:strongswan:2.8.86
cpe:/a:strongswan:strongswan:2.8.76
cpe:/a:strongswan:strongswan:2.8.66
cpe:/a:strongswan:strongswan:2.8.56
cpe:/a:strongswan:strongswan:2.8.46
cpe:/a:strongswan:strongswan:2.8.36
cpe:/a:strongswan:strongswan:2.8.26
cpe:/a:strongswan:strongswan:2.8.111
cpe:/a:strongswan:strongswan:2.8.103
cpe:/a:strongswan:strongswan:2.8.16
cpe:/a:strongswan:strongswan:2.8.06
cpe:/a:strongswan:strongswan:2.7.31
cpe:/a:strongswan:strongswan:2.7.21
cpe:/a:strongswan:strongswan:2.7.11
cpe:/a:strongswan:strongswan:2.7.04
cpe:/a:strongswan:strongswan:2.6.45
cpe:/a:strongswan:strongswan:2.6.35
cpe:/a:strongswan:strongswan:2.6.211
cpe:/a:strongswan:strongswan:2.6.203
cpe:/a:strongswan:strongswan:2.6.25
cpe:/a:strongswan:strongswan:2.6.163
cpe:/a:strongswan:strongswan:2.6.141
cpe:/a:strongswan:strongswan:2.6.15
cpe:/a:strongswan:strongswan:2.6.05
cpe:/a:strongswan:strongswan:2.61
cpe:/a:strongswan:strongswan:2.5.74
cpe:/a:strongswan:strongswan:2.5.64
cpe:/a:strongswan:strongswan:2.5.54
cpe:/a:strongswan:strongswan:2.5.44
cpe:/a:strongswan:strongswan:2.5.34
cpe:/a:strongswan:strongswan:2.5.24
cpe:/a:strongswan:strongswan:2.5.14
cpe:/a:strongswan:strongswan:2.5.04
cpe:/a:strongswan:strongswan:2.4.44

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
5 2014-05-07 CVE-2014-2891 Network Low None Requ...
6.4 2014-04-16 CVE-2014-2338 Network Low None Requ...
5 2013-11-02 CVE-2013-6076 Network Low None Requ...
5 2013-11-02 CVE-2013-6075 Network Low None Requ...
4.3 2013-08-28 CVE-2013-5018 Network Medium None Requ...
Hide | Show 11 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
5.1 2013-07-09 CVE-2013-2054 Network High None Requ...
4.9 2013-05-02 CVE-2013-2944 Network Medium Requires ...
7.5 2012-06-27 CVE-2012-2388 Network Low None Requ...
7.5 2010-08-20 CVE-2010-2628 Network Low None Requ...
5 2009-08-04 CVE-2009-2661 Network Low None Requ...
5 2009-06-24 CVE-2009-2185 Network Low None Requ...
5 2009-06-07 CVE-2009-1958 Network Low None Requ...
5 2009-06-07 CVE-2009-1957 Network Low None Requ...
5 2009-04-01 CVE-2009-0790 Network Low None Requ...
5 2008-10-14 CVE-2008-4551 Network Low None Requ...
10 2004-12-06 CVE-2004-0590 Network Low None Requ...

CWE : Common Weakness Enumeration

%idName
23% (3)CWE-399Resource Management Errors
23% (3)CWE-287Improper Authentication
23% (3)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
15% (2)CWE-20Improper Input Validation
7% (1)CWE-310Cryptographic Issues
Hide | Show 1 More...
%idName
7% (1)CWE-94Failure to Control Generation of Code ('Code Injection')

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:7907DSA-1759 strongswan -- denial of service
oval:org.mitre.oval:def:13547DSA-1760-1 openswan -- denial of service
oval:org.mitre.oval:def:12881DSA-1759-1 strongswan -- denial of service
oval:org.mitre.oval:def:11171The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2...
oval:org.mitre.oval:def:21841ELSA-2009:0402: openswan security update (Important)
Hide | Show 11 More...
idName
oval:org.mitre.oval:def:8369DSA-1898 openswan -- denial of service
oval:org.mitre.oval:def:18226DSA-1898-1 openswan - denial of service
oval:org.mitre.oval:def:11079The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1...
oval:org.mitre.oval:def:22909ELSA-2009:1138: openswan security update (Important)
oval:org.mitre.oval:def:8047DSA-1899 strongswan -- several vulnerabilities
oval:org.mitre.oval:def:13577DSA-1899-1 strongswan -- several
oval:org.mitre.oval:def:19671DSA-2483-1 strongswan - authentication bypass
oval:org.mitre.oval:def:18177DSA-2665-1 strongswan - authentication bypass
oval:org.mitre.oval:def:20000DSA-2789-1 strongswan - Denial of service and authorisation bypass
oval:org.mitre.oval:def:24282DSA-2903-1 strongswan - security update
oval:org.mitre.oval:def:24774DSA-2922-1 strongswan - security update

Open Source Vulnerability Database (OSVDB)

idDescription
67148strongSwan snprintf() Function Certificate / Identification Payload Remote Co...
55421Openswan ASN.1 Parser Crafted X.509 Certificate Remote IKE Daemon DoS
55420strongSwan ASN.1 Parser Crafted X.509 Certificate RDN IKE Daemon Remote DoS
55047strongSwan charon Daemon charon/sa/tasks/child_create.c IKE_AUTH Request Hand...
55046strongSwan charon Daemon charon/sa/ike_sa.c IKE_SA_INIT Request Handling DoS
Hide | Show 4 More...
idDescription
53209Openswan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
53208strongSwan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS
48410strongSwan IKEv2 charon Daemon Crafted IKE_SA_INIT Message Remote DoS
7281Swan Products X.509 Certificate Validation Bypass and DoS

OpenVAS Exploits

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2012-12-13Name : SuSE Update for update openSUSE-SU-2012:0691-1 (update)
File : nvt/gb_suse_2012_0691_1.nasl
2012-08-30Name : Fedora Update for strongswan FEDORA-2012-8815
File : nvt/gb_fedora_2012_8815_strongswan_fc17.nasl
2012-06-11Name : Fedora Update for strongswan FEDORA-2012-8821
File : nvt/gb_fedora_2012_8821_strongswan_fc16.nasl
2012-05-31Name : Debian Security Advisory DSA 2483-1 (strongswan)
File : nvt/deb_2483_1.nasl
2011-08-09Name : CentOS Update for openswan CESA-2009:0402 centos5 i386
File : nvt/gb_CESA-2009_0402_openswan_centos5_i386.nasl
Hide | Show 20 More...
idDescription
2011-08-09Name : CentOS Update for openswan CESA-2009:1138 centos5 i386
File : nvt/gb_CESA-2009_1138_openswan_centos5_i386.nasl
2009-11-11Name : SuSE Security Summary SUSE-SR:2009:018
File : nvt/suse_sr_2009_018.nasl
2009-10-19Name : Mandrake Security Advisory MDVSA-2009:273 (strongswan)
File : nvt/mdksa_2009_273.nasl
2009-10-19Name : SuSE Security Summary SUSE-SR:2009:016
File : nvt/suse_sr_2009_016.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan0.nasl
2009-10-13Name : SLES10: Security update for openswan
File : nvt/sles10_openswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan0.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan1.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan2.nasl
2009-10-13Name : SLES10: Security update for strongswan
File : nvt/sles10_strongswan3.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan0.nasl
2009-10-11Name : SLES11: Security update for openswan
File : nvt/sles11_openswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan0.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan1.nasl
2009-10-11Name : SLES11: Security update for strongswan
File : nvt/sles11_strongswan2.nasl
2009-10-10Name : SLES9: Security update for freeswan
File : nvt/sles9p5053980.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21334 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10Openswan/Strongswan Pluto IKE daemon ISAKMP DPD malformed packet DOS attempt
RuleID : 21333 - Type : SERVER-WEBAPP - Revision : 2
2014-01-10strongSwan Certificate and Identification payload overflow attempt
RuleID : 19182 - Type : SERVER-OTHER - Revision : 6

Nessus® Vulnerability Scanner

This CPE Product have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : suse_11_3_strongswan-100802.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-412.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-413.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-414.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_strongswan-140514.nasl - Type : ACT_GATHER_INFO
Hide | Show 20 More...
idDescription
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2014-384.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-643.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-645.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2012-309.nasl - Type : ACT_GATHER_INFO
2014-06-13Name : The remote openSUSE host is missing a security update.
File : openSUSE-2013-826.nasl - Type : ACT_GATHER_INFO
2014-05-06Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2922.nasl - Type : ACT_GATHER_INFO
2014-05-05Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_6fb521b0d38811e3a790000c2980a9f3.nasl - Type : ACT_GATHER_INFO
2014-04-25Name : The remote Fedora host is missing a security update.
File : fedora_2014-5231.nasl - Type : ACT_GATHER_INFO
2014-04-25Name : The remote Fedora host is missing a security update.
File : fedora_2014-5238.nasl - Type : ACT_GATHER_INFO
2014-04-16Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_strongswan-140403.nasl - Type : ACT_GATHER_INFO
2014-04-15Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2903.nasl - Type : ACT_GATHER_INFO
2014-01-28Name : The remote FreeBSD host is missing a security-related update.
File : freebsd_pkg_efa663eb875411e39a4700163e1ed244.nasl - Type : ACT_GATHER_INFO
2014-01-27Name : The remote Fedora host is missing a security update.
File : fedora_2014-0516.nasl - Type : ACT_GATHER_INFO
2014-01-27Name : The remote Fedora host is missing a security update.
File : fedora_2014-0567.nasl - Type : ACT_GATHER_INFO
2013-12-13Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_strongswan-131101.nasl - Type : ACT_GATHER_INFO
2013-11-02Name : The remote Debian host is missing a security-related update.
File : debian_DSA-2789.nasl - Type : ACT_GATHER_INFO
2013-09-02Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201309-02.nasl - Type : ACT_GATHER_INFO
2013-08-21Name : The remote Fedora host is missing a security update.
File : fedora_2013-14481.nasl - Type : ACT_GATHER_INFO
2013-08-21Name : The remote Fedora host is missing a security update.
File : fedora_2013-14510.nasl - Type : ACT_GATHER_INFO
2013-08-02Name : The remote SuSE 11 host is missing one or more security updates.
File : suse_11_strongswan-130701.nasl - Type : ACT_GATHER_INFO