Executive Summary
| Summary | |
|---|---|
| Title | Updated ipsec-tools package |
| Informations | |||
|---|---|---|---|
| Name | RHSA-2004:308 | First vendor Publication | 2004-07-29 |
| Vendor | RedHat | Last vendor Modification | 2004-07-29 |
| Severity (Vendor) | N/A | Revision | 01 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Problem Description: An updated ipsec-tools package that fixes verification of X.509 certificates in racoon is now available. 2. Relevant releases/architectures: Red Hat Enterprise Linux AS version 3 - i386, ia64, ppc, ppc64, s390, s390x, x86_64 Red Hat Desktop version 3 - i386, x86_64 Red Hat Enterprise Linux ES version 3 - i386, ia64, x86_64 Red Hat Enterprise Linux WS version 3 - i386, ia64, x86_64 3. Problem description: IPSEC uses strong cryptography to provide both authentication and encryption services. When configured to use X.509 certificates to authenticate remote hosts, ipsec-tools versions 0.3.3 and earlier will attempt to verify that host certificate, but will not abort the key exchange if verification fails. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0607 to this issue. Users of ipsec-tools should upgrade to this updated package which contains a backported security patch and is not vulnerable to this issue. 4. Solution: Before applying this update, make sure that all previously-released errata relevant to your system have been applied. Use Red Hat Network to download and update your packages. To launch the Red Hat Update Agent, use the following command: up2date For information on how to install packages manually, refer to the following Web page for the System Administration or Customization guide specific to your system: http://www.redhat.com/docs/manuals/enterprise/ 5. Bug IDs fixed (http://bugzilla.redhat.com/ for more info): 126568 - racoon authentication bug |
Original Source
| Url : https://rhn.redhat.com/errata/RHSA-2004-308.html |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:9163 | |||
| Oval ID: | oval:org.mitre.oval:def:9163 | ||
| Title: | The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. | ||
| Description: | The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication. | ||
| Family: | unix | Class: | vulnerability |
| Reference(s): | CVE-2004-0607 | Version: | 5 |
| Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2008-09-24 | Name : Gentoo Security Advisory GLSA 200406-17 (IPsec-Tools) File : nvt/glsa_200406_17.nasl |
| 2008-09-04 | Name : FreeBSD Ports: racoon File : nvt/freebsd_racoon.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 7114 | IPsec-Tools X.509 Invalid Certificate Validation IPsec-Tools contains a flaw that may allow a malicious user to let the IKE-daemon accept an invalid certificate. The issue is triggered when a malformed certificate meeting certain conditions is provided to the server. It is possible that the flaw may allow unauthorized access resulting in a loss of integrity. |
| 7113 | KAME Racoon X.509 Invalid Certificate Validation KAME Racoon contains a flaw that may allow a malicious user to use an invalid X509 certificate. The issue is triggered when the "eay_check_x509cert" function is invoked. It is possible that the flaw may allow invalid certificates to be accepted, allowing an attacker to access private resources. |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | KAME racoon X509 certificate verification bypass attempt RuleID : 16080 - Revision : 6 - Type : SERVER-OTHER |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2004-09-08 | Name : The remote host is missing a Mac OS X update that fixes a security issue. File : macosx_SecUpd20040907.nasl - Type : ACT_GATHER_INFO |
| 2004-08-30 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200406-17.nasl - Type : ACT_GATHER_INFO |
| 2004-07-30 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2004-308.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:48:33 |
|
