MidnightBSD

Advisories for frees_wan

CVE-2002-0666 MEDIUM

IPSEC implementations including (1) FreeS/WAN and (2) KAME do not properly calculate the length of authentication data, which allows remote attackers to cause a denial of service (kernel panic) via spoofed, short Encapsulating Security Payload (ESP) packets, which result in integer signedness errors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
netbsd netbsd 1.5.3
netbsd netbsd 1.5
global_technology_associates gnat_box_firmware 3.1
netbsd netbsd 1.6
frees_wan frees_wan 1.9.1
nec ix1020 *
frees_wan frees_wan 1.9.6
nec ix1010 *
frees_wan frees_wan 1.9.5
nec ix1011 *
freebsd freebsd 4.6
frees_wan frees_wan 1.9.2
apple mac_os_x 10.2
frees_wan frees_wan 1.9.3
nec ix2010 *
global_technology_associates gnat_box_firmware 3.2
netbsd netbsd 1.5.2
nec bluefire_ix1035_router *
netbsd netbsd 1.5.1
frees_wan frees_wan 1.9
global_technology_associates gnat_box_firmware 3.3
frees_wan frees_wan 1.9.4
nec ix1050 *
apple mac_os_x_server 10.2
CVE-2004-0590 HIGH

FreeS/WAN 1.x and 2.x, and other related products including superfreeswan 1.x, openswan 1.x before 1.0.6, openswan 2.x before 2.1.4, and strongSwan before 2.1.3, allows remote attackers to authenticate using spoofed PKCS#7 certificates in which a self-signed certificate identifies an alternate Certificate Authority (CA) and spoofed issuer and subject.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
strongswan strongswan *
openswan openswan 2
openswan openswan 1
frees_wan frees_wan 1
frees_wan super_frees_wan 1
frees_wan frees_wan 2
CVE-2005-3671 HIGH

The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
openswan openswan 2.1.6
openswan openswan 2.1.2
frees_wan frees_wan 2.04
xelerance openswan 2.4.0
openswan openswan 2.3
openswan openswan 2.1.5
openswan openswan 2.1.4
openswan openswan 2.2
openswan openswan 2.1.1