CyberSec.Space Logo
Back to CVE Browser

CVE-2006-7155

HIGH
7.5
CVSS Severity Score
EPSS Score0.1960%
EPSS Percentile44.61th
PublishedMar 7, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.

Affected Platforms (CPE)

πŸ“¦
Novell

Bordermanager

= 3.8

References & Advisories

πŸ”— http://secunia.com/advisories/22699
πŸ”— http://securitytracker.com/id?1017213
πŸ”— http://www.attrition.org/pipermail/vim/2007-March/001410.html
πŸ”— http://www.osvdb.org/30338
πŸ”— http://www.securityfocus.com/bid/21014
πŸ”— http://www.vupen.com/english/advisories/2006/4471
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/30218
πŸ”— https://secure-support.novell.com/KanisaPlatform/Publishing/201/3003139_f.SAL_Public.html

Related Vulnerabilities

CVE-2007-576710.0

Heap-based buffer overflow in the Client Trust application (clntrust.exe) in Novell BorderManager 3.8 before Update 1.5 allows rem...

CVE-2000-06517.5

The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow ...

CVE-2006-36977.2

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell Bord...

CVE-2001-04865.0

Remote attackers can cause a denial of service in Novell BorderManager 3.6 and earlier by sending TCP SYN flood to port 353.