FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

racoon remote denial of service vulnerability (IKE Generic Payload Header)

Affected packages
racoon < 20040407b

Details

VuXML ID 40fcf20f-8891-11d8-90d1-0020ed76ef5a
Discovery 2003-12-03
Entry 2004-04-07
Modified 2004-04-14

When racoon receives an IKE message with an incorrectly constructed Generic Payload Header, it may behave erratically, going into a tight loop and dropping connections.

References

CVE Name CVE-2004-0392
URL http://orange.kame.net/dev/query-pr.cgi?pr=555