CVE-2004-0403
published 2004-06-01CVE-2004-0403: Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
PriorityP417medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
2.85%
85.0th percentile
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| kame | racoon | <= 2004-04-08a | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-w79f-5j5f-hxqj: Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field
ghsa_unreviewed·2022-05-03
CVE-2004-0403 [MEDIUM] GHSA-w79f-5j5f-hxqj: Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
Red Hat
security flaw
vendor_redhat·2004-03-31·CVSS 5.0
CVE-2004-0403 [MEDIUM] security flaw
security flaw
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2004-0403 security flaw
bugzilla·2018-08-16·CVSS 5.0
CVE-2004-0403 [MEDIUM] CVE-2004-0403 security flaw
CVE-2004-0403 security flaw
Flaw bug created to hold information about an old flaw we knew something about. For more details see the MITRE CVE description.
Discussion:
MITRE description:
Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
Bugzilla
CAN-2004-0155/CAN-2004-0164/CAN-2004-0403 IPSEC vulnerabilities
bugzilla·2004-04-07
[MEDIUM] CAN-2004-0155/CAN-2004-0164/CAN-2004-0403 IPSEC vulnerabilities
CAN-2004-0155/CAN-2004-0164/CAN-2004-0403 IPSEC vulnerabilities
With versions of ipsec-tools prior to 0.2.3, it was possible for an
attacker to cause unauthorized deletion of SA (Security Associations.)
The Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the name CAN-2004-0164 to this issue.
With versions of ipsec-tools prior to 0.2.5, the RSA signature on
x.509 certificates was not properly verified when using certificate
based authentication. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0155 to this issue.
This issue affected Red Hat Enterprise Linux 3
RHSA-2004:165 in progress
Discussion:
Additionally:
When ipsec-tools receives an ISAKMP header, it will attempt
to allocate sufficient memory for the entir
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txtftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.aschttp://marc.info/?l=bugtraq&m=108369640424244&w=2http://secunia.com/advisories/11410http://secunia.com/advisories/11877http://security.gentoo.org/glsa/glsa-200404-17.xmlhttp://securitytracker.com/id?1009937http://sourceforge.net/project/shownotes.php?release_id=232288http://www.kame.net/dev/cvsweb2.cgi/kame/kame/kame/racoon/isakmp.c.diff?r1=1.180&r2=1.181http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069http://www.osvdb.org/5491http://www.redhat.com/support/errata/RHSA-2004-165.htmlhttp://www.securityfocus.com/bid/10172http://www.vuxml.org/freebsd/ccd698df-8e20-11d8-90d1-0020ed76ef5a.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/15893https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txtftp://patches.sgi.com/support/free/security/advisories/20040506-01-U.aschttp://marc.info/?l=bugtraq&m=108369640424244&w=2http://secunia.com/advisories/11410http://secunia.com/advisories/11877http://security.gentoo.org/glsa/glsa-200404-17.xmlhttp://securitytracker.com/id?1009937http://sourceforge.net/project/shownotes.php?release_id=232288http://www.kame.net/dev/cvsweb2.cgi/kame/kame/kame/racoon/isakmp.c.diff?r1=1.180&r2=1.181http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:069http://www.osvdb.org/5491http://www.redhat.com/support/errata/RHSA-2004-165.htmlhttp://www.securityfocus.com/bid/10172http://www.vuxml.org/freebsd/ccd698df-8e20-11d8-90d1-0020ed76ef5a.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/15893https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11220https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A984
2004-06-01
Published