CVE-2006-1646
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
06/04/2006
Last modified:
03/04/2025
Description
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in the Shoichi Sakane KAME Project racoon, as used by NetBSD 1.6, 2.x before 20060119, certain FreeBSD releases, and possibly other distributions of BSD or Linux operating systems, when running in aggressive mode, allows remote attackers to cause a denial of service (daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Impact
Base Score 2.0
5.00
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-003.txt.asc
- http://mail-index.netbsd.org/source-changes/2006/01/19/0017.html
- http://secunia.com/advisories/19463
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
- http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en
- ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2006-003.txt.asc
- http://mail-index.netbsd.org/source-changes/2006/01/19/0017.html
- http://secunia.com/advisories/19463
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
- http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en