Kame

kame

8 CVEs • 3 products

Products (3)

Click to collapse

Toggle

CVEs (8)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2008-2464 3Freebsd KameNetbsd 3Freebsd KameNetbsd Apr 23, 2026 Sep 11, 2008 N/A· v4 N/A· v3 7.1 HIGH· v2 The mld_input function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and panic) via a malformed I...Show more The mld_input function in sys/netinet6/mld6.c in the kernel in NetBSD 4.0, FreeBSD, and KAME, when INET6 is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and panic) via a malformed ICMPv6 Multicast Listener Discovery (MLD) query with a certain Maximum Response Delay value.Show less
CVE-2008-0177 1Kame 1Ipcomp Apr 23, 2026 Feb 7, 2008 N/A· v4 N/A· v3 7.8 HIGH· v2 The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the return value of the m_pulldown function, which allows remote attackers to cause a denial of servic...Show more The ipcomp6_input function in sys/netinet6/ipcomp_input.c in the KAME project before 20071201 does not properly check the return value of the m_pulldown function, which allows remote attackers to cause a denial of service (system crash) via an IPv6 packet with an IPComp header.Show less
CVE-2005-0398 6Altlinux Ipsec ToolsKame+3 more 7Alt Linux Enterprise LinuxEnterprise Linux Desktop+4 more Apr 16, 2026 Mar 14, 2005 N/A· v4 N/A· v3 5.0 MEDIUM· v2 The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP packets.
CVE-2004-0607 3Ipsec Tools KameRedhat 4Enterprise Linux Enterprise Linux DesktopIpsec Tools+1 more Apr 16, 2026 Dec 6, 2004 N/A· v4 N/A· v3 10.0 HIGH· v2 The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.
CVE-2004-0392 1Kame 1Racoon Apr 16, 2026 Jun 14, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association...Show more racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.Show less
CVE-2004-0403 1Kame 1Racoon Apr 16, 2026 Jun 1, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Racoon before 20040408a allows remote attackers to cause a denial of service (memory consumption) via an ISAKMP packet with a large length field.
CVE-2004-0155 1Kame 1Racoon Apr 16, 2026 Jun 1, 2004 N/A· v4 N/A· v3 7.5 HIGH· v2 The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP conn...Show more The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-middle attacks using a valid, trusted X.509 certificate.Show less
CVE-2004-0164 1Kame 1Racoon Apr 16, 2026 Mar 3, 2004 N/A· v4 N/A· v3 5.0 MEDIUM· v2 KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a cert...Show more KAME IKE daemon (racoon) does not properly handle hash values, which allows remote attackers to delete certificates via (1) a certain delete message that is not properly handled in isakmp.c or isakmp_inf.c, or (2) a certain INITIAL-CONTACT message that is not properly handled in isakmp_inf.c.Show less