CVE-2006-0905

CVE-2006-0905 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A "programming error" in fast_ipsec in FreeBSD 4.8-RELEASE through 6.1-STABLE and NetBSD 2 through 3 does not properly update the sequence number associated with a Security Association, which allows packets to pass sequence number checks and allows remote attackers to capture IPSec packets and conduct replay attacks.

Learn more about our Web Application Penetration Testing UK.