oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

Re: CVE Request

From: "Steven M. Christey" <coley () linus mitre org>
Date: Thu, 6 Mar 2008 14:53:13 -0500 (EST)

======================================================
Name: CVE-2008-1198
Status: Candidate
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1198
Reference: MISC:http://www.ernw.de/download/pskattack.pdf
Reference: CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=435274

The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5
configures racoon to use aggressive IKE mode instead of main IKE mode,
which makes it easier for remote attackers to conduct brute force
attacks by sniffing an unencrypted preshared key (PSK) hash.
Previous By Date Next
Previous By Thread Next

Current thread: