This CVE name corresponds to:
|2004-03-31||isakmpd payload handling denial-of-service vulnerabilities|
The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.
isakmpd in OpenBSD 3.4 and earlier allows remote attackers to cause a denial of service via a an ISAKMP packet with a malformed Cert Request payload, which causes an integer underflow that is used in a malloc operation that is not properly handled, as demonstrated by the Striker ISAKMP Protocol Test Suite.
|BUGTRAQ||20040323 R7-0018: OpenBSD isakmpd payload handling denial-of-service vulnerabilities|
|OPENBSD||20040317 015: RELIABILITY FIX: March 17, 2004|
Copyright © 2005 The MITRE Corporation.
Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.