CVE-2009-0790

NONECVSS 0.0

0.0

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted (1) R_U_THERE or (2) R_U_THERE_ACK Dead Peer Detection (DPD) IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD.

🔗 References (34)

secalert@redhathttp://download.strongswan.org/CHANGES4.txt
secalert@redhathttp://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html
secalert@redhathttp://secunia.com/advisories/34472
secalert@redhathttp://secunia.com/advisories/34483
secalert@redhathttp://secunia.com/advisories/34494
secalert@redhathttp://secunia.com/advisories/34546
secalert@redhathttp://www.debian.org/security/2009/dsa-1759
secalert@redhathttp://www.debian.org/security/2009/dsa-1760
secalert@redhathttp://www.openswan.org/CVE-2009-0790/CVE-2009-0790.txt
secalert@redhathttp://www.redhat.com/support/errata/RHSA-2009-0402.html
secalert@redhathttp://www.securityfocus.com/archive/1/502270/100/0/threaded
secalert@redhathttp://www.securityfocus.com/bid/34296
secalert@redhathttp://www.securitytracker.com/id?1021949
secalert@redhathttp://www.securitytracker.com/id?1021950
secalert@redhathttp://www.vupen.com/english/advisories/2009/0886

Is Your Infrastructure Affected by CVE-2009-0790?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2009-0790

📅 Published

🔄 Last Modified

🔗 References (34)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2009-0790?