Mageni Mageni Security LLC

Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

strongSwan IKE_SA_INIT and IKE_AUTH DoS Vulnerabilities

Information

Severity

Severity

Medium

Family

Family

Denial of Service

CVSSv2 Base

CVSSv2 Base

5.0

CVSSv2 Vector

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

14 years ago

Modified

Modified

4 years ago

Share

Summary

This host has installed strongSwan and is prone to Denial of Service Vulnerabilities.

Insight

Insight

The flaws are due to, - An error in charon/sa/ike_sa.c charon daemon which results in NULL pointer dereference and crash via an invalid 'IKE_SA_INIT' request that triggers 'an incomplete state, ' followed by a 'CREATE_CHILD_SA' request. - An error in incharon/sa/tasks/child_create.c charon daemon, it switches the NULL checks for TSi and TSr payloads, via an 'IKE_AUTH' request without a 'TSi' or 'TSr' traffic selector.

Affected Software

Affected Software

strongSwan Version prior to 4.2.15 and 4.3.1

Solution

Solution

Upgrade to version 4.3.1, 4.2.15 or later.

Common Vulnerabilities and Exposures (CVE)

References