Denial of Service Vulnerability in racoon (before 20040407b) via Malformed IKE Message

CVE-2004-0392 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.

Learn more about our Web Application Penetration Testing UK.