This CPE summary could be partial or incomplete. Please contact us for a detailed listing.
Summary
| Summuary | |
|---|---|
| CPE Name | cpe:/a:strongswan:strongswan |
| Detail | |||
|---|---|---|---|
| Vendor | Strongswan | First view | 2004-12-06 |
| Product | Strongswan | Last view | 2013-05-02 |
| Version | Type | Application | |
| Edition | |||
| Language | |||
| Update | |||
Activity : Yearly
COMMON PLATFORM ENUMERATION : Repartition per Version
This CPE Product have more than 100 Versions. If you want to see a complete summary for this CPE, please contact us.
Related : CVE
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 4.9 | 2013-05-02 | CVE-2013-2944 | Network | Medium | Requires ... | |
| 7.5 | 2012-06-27 | CVE-2012-2388 | Network | Low | None Requ... | |
| 7.5 | 2010-08-20 | CVE-2010-2628 | Network | Low | None Requ... | |
| 5 | 2009-08-04 | CVE-2009-2661 | Network | Low | None Requ... | |
| 5 | 2009-06-24 | CVE-2009-2185 | Network | Low | None Requ... | |
| Date | Alert | Access Vector | Access Complexity | Authentification | ||
|---|---|---|---|---|---|---|
| 5 | 2009-06-07 | CVE-2009-1958 | Network | Low | None Requ... | |
| 5 | 2009-06-07 | CVE-2009-1957 | Network | Low | None Requ... | |
| 5 | 2009-04-01 | CVE-2009-0790 | Network | Low | None Requ... | |
| 5 | 2008-10-14 | CVE-2008-4551 | Network | Low | None Requ... | |
| 10 | 2004-12-06 | CVE-2004-0590 | Network | Low | None Requ... |
CWE : Common Weakness Enumeration
| % | id | Name |
|---|---|---|
| 33% (3) | CWE-399 | Resource Management Errors |
| 22% (2) | CWE-287 | Improper Authentication |
| 22% (2) | CWE-20 | Improper Input Validation |
| 11% (1) | CWE-310 | Cryptographic Issues |
| 11% (1) | CWE-94 | Failure to Control Generation of Code ('Code Injection') |
Oval Markup Language : Definitions
| OvalID | Name |
|---|---|
| oval:org.mitre.oval:def:11171 | The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2... |
| oval:org.mitre.oval:def:11079 | The ASN.1 parser (pluto/asn1.c, libstrongswan/asn1/asn1.c, libstrongswan/asn1... |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 67148 | strongSwan snprintf() Function Certificate / Identification Payload Remote Co... |
| 55421 | Openswan ASN.1 Parser Crafted X.509 Certificate Remote IKE Daemon DoS |
| 55420 | strongSwan ASN.1 Parser Crafted X.509 Certificate RDN IKE Daemon Remote DoS |
| 55047 | strongSwan charon Daemon charon/sa/tasks/child_create.c IKE_AUTH Request Hand... |
| 55046 | strongSwan charon Daemon charon/sa/ike_sa.c IKE_SA_INIT Request Handling DoS |
| id | Description |
|---|---|
| 53209 | Openswan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS |
| 53208 | strongSwan Pluto IKE Daemon Dead Peer Detection NULL Dereference Remote DoS |
| 48410 | strongSwan IKEv2 charon Daemon Crafted IKE_SA_INIT Message Remote DoS |
| 7281 | Swan Products X.509 Certificate Validation Bypass and DoS |
