kame

Top products

The 8 most recently published vulnerabilities affecting kame.

• CVE-2008-2464The mld_input function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and p...7.1Sep 10, 2008
• CVE-2008-0177The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the return value of the m_pulldown function, which allows remote attackers to c...7.8Feb 7, 2008
• CVE-2005-0398The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.5.0Mar 26, 2005
• CVE-2004-0607The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.10.0Jun 30, 2004
• CVE-2004-0392racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1...5.0May 6, 2004
• CVE-2004-0403Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.5.0Apr 16, 2004
• CVE-2004-0155The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establi...7.5Apr 16, 2004
• CVE-2004-0164KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isak...5.0Feb 19, 2004