返回 CVE 浏览器

CVE-2006-7155

HIGH

7.5

CVSS Severity Score

EPSS Score0.1960%

EPSS Percentile44.61th

Published2007年3月7日

Last Modified2026年4月23日

Vulnerability Description

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.

Affected Platforms (CPE)

📦

Novell

Bordermanager

= 3.8

References & Advisories

🔗 http://secunia.com/advisories/22699

🔗 http://securitytracker.com/id?1017213

🔗 http://www.attrition.org/pipermail/vim/2007-March/001410.html

🔗 http://www.osvdb.org/30338

🔗 http://www.securityfocus.com/bid/21014

🔗 http://www.vupen.com/english/advisories/2006/4471

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/30218

🔗 https://secure-support.novell.com/KanisaPlatform/Publishing/201/3003139_f.SAL_Public.html

相关漏洞威胁

CVE-2007-576710.0

Heap-based buffer overflow in the Client Trust application (clntrust.exe) in Novell BorderManager 3.8 before Update 1.5 allows rem...

CVE-2000-06517.5

The ClientTrust program in Novell BorderManager does not properly verify the origin of authentication requests, which could allow ...

CVE-2006-36977.2

Agnitum Outpost Firewall Pro 3.51.759.6511 (462), as used in (1) Lavasoft Personal Firewall 1.0.543.5722 (433) and (2) Novell Bord...

CVE-2001-04865.0

Remote attackers can cause a denial of service in Novell BorderManager 3.6 and earlier by sending TCP SYN flood to port 353.