Denial of Service Vulnerability in Libreswan 3.6 via Small Length Value and Invalid Major Number in IKE Packet

Denial of Service Vulnerability in Libreswan 3.6 via Small Length Value and Invalid Major Number in IKE Packet

CVE-2013-4564 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

Libreswan 3.6 allows remote attackers to cause a denial of service (crash) via a small length value and (1) no version or (2) an invalid major number in an IKE packet.

Learn more about our Web Application Penetration Testing UK.