CVE-2007-1841
published 2007-04-10CVE-2007-1841: The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel…
PriorityP417medium4.3CVSS 2.0
AVNACMAuNCNINAP
EPSS
2.85%
85.0th percentile
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | otrs2 | < otrs2 2.1.1-1 (bullseye) | otrs2 2.1.1-1 (bullseye) |
| ipsec-tools | ipsec-tools | <= 0.6.2 | — |
| otrs | otrs | — | — |
CVSS provenance
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM
vendor_debian4.3MEDIUM
vendor_redhat4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
ipsec-tools vulnerability
vendor_ubuntu·2007-04-09
CVE-2007-1841 ipsec-tools vulnerability
Title: ipsec-tools vulnerability
Summary: ipsec-tools vulnerability
A flaw was discovered in the IPSec key exchange server "racoon". Remote
attackers could send a specially crafted packet and disrupt established
IPSec tunnels, leading to a denial of service.
Instructions: In general, a standard system upgrade is sufficient to effect the
necessary changes.
Red Hat
ipsec-tools racoon DoS
vendor_redhat·2007-04-06·CVSS 4.3
CVE-2007-1841 [MEDIUM] ipsec-tools racoon DoS
ipsec-tools racoon DoS
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
Debian
CVE-2007-2524: otrs2 - Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request Syst...
vendor_debian·2007·CVSS 4.3
CVE-2007-2524 [MEDIUM] CVE-2007-2524: otrs2 - Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request Syst...
Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request System (OTRS) 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, but the proper identifier for the ipsec-tools issue is CVE-2007-1841.
Scope: local
bullseye: resolved (fixed in 2.1.1-1)
GHSA
GHSA-4q3g-xq49-mpmw: Cross-site scripting (XSS) vulnerability in index
ghsa_unreviewed·2022-05-01·CVSS 4.3
CVE-2007-2524 [MEDIUM] CWE-79 GHSA-4q3g-xq49-mpmw: Cross-site scripting (XSS) vulnerability in index
Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request System (OTRS) 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, but the proper identifier for the ipsec-tools issue is CVE-2007-1841.
GHSA
GHSA-3c6r-mxqj-c794: The isakmp_info_recv function in src/racoon/isakmp_inf
ghsa_unreviewed·2022-05-01
CVE-2007-1841 [MEDIUM] GHSA-3c6r-mxqj-c794: The isakmp_info_recv function in src/racoon/isakmp_inf
The isakmp_info_recv function in src/racoon/isakmp_inf.c in racoon in Ipsec-tools before 0.6.7 allows remote attackers to cause a denial of service (tunnel crash) via crafted (1) DELETE (ISAKMP_NPTYPE_D) and (2) NOTIFY (ISAKMP_NPTYPE_N) messages.
OSV
CVE-2007-2524: Cross-site scripting (XSS) vulnerability in index
osv·2007-05-08·CVSS 4.3
CVE-2007-2524 [MEDIUM] CVE-2007-2524: Cross-site scripting (XSS) vulnerability in index
Cross-site scripting (XSS) vulnerability in index.pl in Open Ticket Request System (OTRS) 2.0.x allows remote attackers to inject arbitrary web script or HTML via the Subaction parameter in an AgentTicketMailbox Action. NOTE: DEBIAN:DSA-1299 originally used this identifier for an ipsec-tools issue, but the proper identifier for the ipsec-tools issue is CVE-2007-1841.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-1841 ipsec-tools racoon DoS
bugzilla·2007-04-26·CVSS 4.3
CVE-2007-1841 [MEDIUM] CVE-2007-1841 ipsec-tools racoon DoS
CVE-2007-1841 ipsec-tools racoon DoS
+++ This bug was initially created as a clone of Bug #235388 +++
Apple reported a denial of service flaw in the ipsec-tools racoon. It is
possible for a remote attacker to invalidate an ipsec tunnel between two
machines. According to upstream:
Anybody who can:
- guess that A and B have established an IPSec tunnel
- guess some basic informations about phase1 (or who is ready to do
some quick bruteforce....)
- send packed to A which appears to come from B
Can invalidate that tunnel at any time.
-- Additional comment from [email protected] on 2007-04-05 11:11 EST --
Created an attachment (id=151768)
Proposed upstream patch
Discussion:
This flaw should also affect FC5
---
Steve: please do push an update for FC6. Thanks.
---
Because this only f
Bugzilla
CVE-2007-1841 ipsec-tools racoon DoS
bugzilla·2007-04-05·CVSS 4.3
CVE-2007-1841 [MEDIUM] CVE-2007-1841 ipsec-tools racoon DoS
CVE-2007-1841 ipsec-tools racoon DoS
Apple reported a denial of service flaw in the ipsec-tools racoon. It is
possible for a remote attacker to invalidate an ipsec tunnel between two
machines. According to upstream:
Anybody who can:
- guess that A and B have established an IPSec tunnel
- guess some basic informations about phase1 (or who is ready to do
some quick bruteforce....)
- send packed to A which appears to come from B
Can invalidate that tunnel at any time.
Discussion:
Created attachment 151768
Proposed upstream patch
---
This issue is now public, removing embargo
http://ipsec-tools.sourceforge.net/
2007-04-06
IPsec-tools 0.6.7 released, and fixes a DoS in informationnal messages
handling (CVE-2007-1841). Download here
---
n-v-r is ipsec-tools-0.6.5-8.el5
http://brewwe
http://secunia.com/advisories/24815http://secunia.com/advisories/24826http://secunia.com/advisories/24833http://secunia.com/advisories/25072http://secunia.com/advisories/25142http://secunia.com/advisories/25322http://secunia.com/advisories/25560http://security.gentoo.org/glsa/glsa-200705-09.xmlhttp://sourceforge.net/mailarchive/message.php?msg_name=20070406123739.GA1546%40zen.inchttp://sourceforge.net/project/shownotes.php?release_id=499192&group_id=74601http://www.debian.org/security/2007/dsa-1299http://www.mandriva.com/security/advisories?name=MDKSA-2007:084http://www.novell.com/linux/security/advisories/2007_8_sr.htmlhttp://www.securityfocus.com/bid/23394http://www.securitytracker.com/id?1018086http://www.ubuntu.com/usn/usn-450-1http://www.vupen.com/english/advisories/2007/1310https://exchange.xforce.ibmcloud.com/vulnerabilities/33541https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10504https://rhn.redhat.com/errata/RHSA-2007-0342.htmlhttp://secunia.com/advisories/24815http://secunia.com/advisories/24826http://secunia.com/advisories/24833http://secunia.com/advisories/25072http://secunia.com/advisories/25142http://secunia.com/advisories/25322http://secunia.com/advisories/25560http://security.gentoo.org/glsa/glsa-200705-09.xmlhttp://sourceforge.net/mailarchive/message.php?msg_name=20070406123739.GA1546%40zen.inchttp://sourceforge.net/project/shownotes.php?release_id=499192&group_id=74601http://www.debian.org/security/2007/dsa-1299http://www.mandriva.com/security/advisories?name=MDKSA-2007:084http://www.novell.com/linux/security/advisories/2007_8_sr.htmlhttp://www.securityfocus.com/bid/23394http://www.securitytracker.com/id?1018086http://www.ubuntu.com/usn/usn-450-1http://www.vupen.com/english/advisories/2007/1310https://exchange.xforce.ibmcloud.com/vulnerabilities/33541https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10504https://rhn.redhat.com/errata/RHSA-2007-0342.html
2007-04-10
Published