The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet.
References
Configurations
History
13 Feb 2023, 00:48
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45, when built with NSS, allows remote attackers to cause a denial of service (assertion failure and daemon restart) via a zero DH g^x value in a KE payload in a IKE packet. |
02 Feb 2023, 20:20
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Summary | A flaw was discovered in the way Libreswan's IKE daemon processed IKE KE payloads. A remote attacker could send specially crafted IKE payload with a KE payload of g^x=0 that, when processed, would lead to a denial of service (daemon crash). |
Information
Published : 2015-11-09 16:59
Updated : 2023-12-10 11:46
NVD link : CVE-2015-3240
Mitre link : CVE-2015-3240
CVE.ORG link : CVE-2015-3240
JSON object : View
Products Affected
libreswan
- libreswan
CWE
CWE-189
Numeric Errors