20822 : Multiple Vendor ISAKMP Protocol Unspecified DoS (PROTOS)
Printer | http://osvdb.org/20822 | Email This | Edit Vulnerability

Views This Week
4

Views All Time
127

Info

Last Modified
9 months ago

Percent Complete
100%

Disclosure
Nov 14, 2005

Discovery
Unknown

Dates

Exploit
Unknown

Solution
Unknown

Description

 Various products contain an IKEv1 implementation flaw that may allow a remote denial of service. The issue is triggered when processing malformed IPSec IKE messages, and will result in loss of availability for the service.

Classification

 Location: Remote/Network Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Rumored / Private
Disclosure: OSVDB Verified
OSVDB: Security Software

Technical

 The vulnerability was discovered using the PROTOS test suite "c09-isakmp".

Openswan 2 and freeswan (as implemented in SUE Linux) can be impacted by a crafted packet using an invalid key length 3DES request or unspecified vectors when Agressive Mode is enabled and the PSK is known. It is not clear if these attacks are specific to those two products or impact all products listed here.

Solution

 Sun Microsystems, Inc.:
Solaris 9:
SPARC - Apply T-patch T113451-10.
x86 - Apply T-patch T114435-09.

Solaris 10
SPARC - Apply T-patch T118371-06.
x86 - Apply T-patch T118372-06

Juniper Networks, Inc.:
JUNOS:
Upgrade to version 6.4 2005-07-28 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

JUNOSe:
Upgrade to version 5-2-4p0-8, 5-2-5, 5-3-4p0-5, 6-0-2p0-5, 6-0-3, 6-1-1p0-7, 6-1-2, 7-0-0p0-1, 7-0-1, and 7-1-0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Stonesoft:
StoneGate Firewall:
Upgrade to version 2.6.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

StoneGate VPN Client:
Upgrade to version 2.6.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Openswan:
Upgrade to version 2.4.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Secgo Software Oy:
Upgrade to version 3.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Nortel Networks:
Contact Nortel Networks for upgrade information.

Cisco Systems, Inc.:
Visit http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software for patch information.

Products
Openswan
Watch-list
Openswan
Watch-list
 2.3.1
2.4.0
Secgo Software Oy
Watch-list
Crypto IP gateway/client
Watch-list
 2.3
3.0.0 - 3.0.82
3.2.0 - 3.2.26
Crypto IP client
Watch-list
 3.1
Stonesoft
Watch-list
StoneGate VPN Client
Watch-list
 2.6.0
StoneGate Firewall
Watch-list
 2.6.0
Nortel Networks
Watch-list
Contivity Secure IP Services Gateway
Watch-list
 4600
4500
2600
1600
VPN Router
Watch-list
 600
5000
2700
200
1750
1740
1700
1100
1050
1010
100
Application Switch
Watch-list
 3408
2424
2424-SSL
2216
2224
Contivity VPN Switch
Watch-list
 400
1500
1000
Ethernet Routing Switch
Watch-list
 8600
8300
1424T
Ethernet Switch
Watch-list
 8100
Instant Internet
Watch-list
 400-S
100-S
Media Gateway
Watch-list
 15000/7400
Multiprotocol Router
Watch-list
 5430
2430
Multiservice Switch
Watch-list
 15000/20000
15000
Switched Firewall
Watch-list
 6000
5100
VPN Gateway
Watch-list
 3070
3050
Wireless Gateway
Watch-list
 7250
Multiservice Switch (MSS)
Watch-list
 7400
Multiservice Access Switch
Watch-list
 4455
4450
4430
4400
BayStack Instant Internet
Watch-list
 400-S
100-S
Sun Microsystems, Inc.
Watch-list
Solaris
Watch-list
 9
10
Cisco Systems, Inc.
Watch-list
IOS
Watch-list
 12.3T
12.2SXD
12.4
12.4T
MDS Series SanOS
Watch-list
 2.1
VPN 3000 concentrators
Watch-list
 4.1H
4.7B
Firewall Services Module (FWSM)
Watch-list
 2.3
PIX Firewall/ASA
Watch-list
 7.0.1.3
PIX Firewall
Watch-list
 6.3
Juniper Networks, Inc.
Watch-list
JUNOS M/T/J-Series (before 2005-07-28)
Watch-list
 6.4
JUNOSe E-Series
Watch-list
 5.2
5.3
6.0
6.1
7.0
IPsec-Tools
Watch-list
IPsec-tools
Watch-list
 0.6.2
Symantec Corporation
Watch-list
Symantec Enterprise Firewall
Watch-list
 8.0
Symantec Gateway Security (5000 Series)
Watch-list
 3.0
Symantec Gateway Security 5400
Watch-list
 2.0.1
Symantec Gateway Security 5310
Watch-list
 1.0
Symantec Gateway Security 5200
Watch-list
 1.0
Symantec Gateway Security 5300
Watch-list
 1.0
5100
Watch-list
 Unknown or Unspecified
Symantec Firewall /VPN Appliance 200
Watch-list
 Unknown or Unspecified
Symantec Firewall /VPN Appliance 200R
Watch-list
 Unknown or Unspecified
Symantec Gateway Security 400
Watch-list
 2.0
Symantec Gateway Security 300
Watch-list
 2.0

References

Tools & Filters

Nessus

 20313 20763 20807 20809 21286 22831

Credit
  • PROTOS - protosBrand New Doo Dooee.oulu.fi - Oulu University Secure Programming Group

Blogs

Provided by Technorati

 None found at this time

Comments

Add Comment

No Comments.

DONATE NOW!

User Status

Quick Searches

Advertisements

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2008 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use