Vulnerabilities > CVE-2006-1646 - Denial-Of-Service vulnerability in Internet KEY Exchange Internet KEY Exchange 1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in the Shoichi Sakane KAME Project racoon, as used by NetBSD 1.6, 2.x before 20060119, certain FreeBSD releases, and possibly other distributions of BSD or Linux operating systems, when running in aggressive mode, allows remote attackers to cause a denial of service (daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
References
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-003.txt.asc
- http://mail-index.netbsd.org/source-changes/2006/01/19/0017.html
- http://secunia.com/advisories/19463
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
- http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en