CVE-2006-4436
Published: 29 August 2006
isakmpd in OpenBSD 3.8, 3.9, and possibly earlier versions, creates Security Associations (SA) with a replay window of size 0 when isakmpd acts as a responder during SA negotiation, which allows remote attackers to replay IPSec packets and bypass the replay protection.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
isakmpd Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life)
|
| edgy |
Released
(20041012-4)
|
|
| feisty |
Released
(20041012-4)
|
|
| gutsy |
Released
(20041012-4)
|
|
| hardy |
Released
(20041012-4)
|
|
| intrepid |
Released
(20041012-4)
|
|
| jaunty |
Released
(20041012-4)
|
|
| karmic |
Released
(20041012-4)
|
|
| upstream |
Needs triage
|