CyberSec.Space Logo
返回 CVE 浏览器

CVE-2015-4047

HIGH
7.8
CVSS Severity Score
EPSS Score0.1700%
EPSS Percentile30.73th
Published2015年5月29日
Last Modified2026年5月6日

Vulnerability Description

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.

Affected Platforms (CPE)

📦
Ipsec Tools

Ipsec Tools

= 0.8.2
💻
Canonical

Ubuntu Linux

= 12.04
💻
Fedoraproject

Fedora

= 20
💻
Fedoraproject

Fedora

= 21
📦
F5

Big Ip Application Acceleration Manager

>= 11.4.0 and <= 11.6.4
📦
F5

Big Ip Application Acceleration Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Application Acceleration Manager

= 13.0.0
📦
F5

Big Ip Local Traffic Manager

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Local Traffic Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Local Traffic Manager

= 13.0.0
📦
F5

Big Ip Advanced Firewall Manager

>= 11.3.0 and <= 11.6.4
📦
F5

Big Ip Advanced Firewall Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Advanced Firewall Manager

= 13.0.0
📦
F5

Big Ip Analytics

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Analytics

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Analytics

= 13.0.0
📦
F5

Big Ip Access Policy Manager

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Access Policy Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Access Policy Manager

= 13.0.0
📦
F5

Big Ip Application Security Manager

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Application Security Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Application Security Manager

= 13.0.0
📦
F5

Big Ip Domain Name System

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Domain Name System

= 13.0.0
📦
F5

Big Ip Edge Gateway

>= 11.0.0 and <= 11.3.0
📦
F5

Big Ip Global Traffic Manager

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Link Controller

>= 11.0.0 and <= 11.6.4
📦
F5

Big Ip Link Controller

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Link Controller

= 13.0.0
📦
F5

Big Ip Policy Enforcement Manager

>= 11.3.0 and <= 11.6.4
📦
F5

Big Ip Policy Enforcement Manager

>= 12.0.0 and <= 12.1.4
📦
F5

Big Ip Policy Enforcement Manager

= 13.0.0
📦
F5

Big Ip Protocol Security Manager

>= 11.0.0 and <= 11.4.1
📦
F5

Big Ip Wan Optimization Manager

>= 11.0.0 and <= 11.3.0
📦
F5

Big Ip Webaccelerator

>= 11.0.0 and <= 11.3.0
📦
F5

Big Iq Adc

= 4.5.0
📦
F5

Big Iq Centralized Management

= 4.6.0
📦
F5

Big Iq Cloud

>= 4.0.0 and <= 4.5.0
📦
F5

Big Iq Cloud And Orchestration

= 1.0.0
📦
F5

Big Iq Device

>= 4.2.0 and <= 4.5.0
📦
F5

Big Iq Security

>= 4.0.0 and <= 4.5.0
📦
F5

Enterprise Manager

>= 3.0.0 and <= 3.1.1
💻
Debian

Debian Linux

= 7.0
💻
Debian

Debian Linux

= 8.0
💻
Debian

Debian Linux

= 9.0

References & Advisories

🔗 http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159482.html
🔗 http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159549.html
🔗 http://packetstormsecurity.com/files/131992/IPsec-Tools-0.8.2-Denial-Of-Service.html
🔗 http://seclists.org/fulldisclosure/2015/May/81
🔗 http://seclists.org/fulldisclosure/2015/May/83
🔗 http://www.debian.org/security/2015/dsa-3272
🔗 http://www.openwall.com/lists/oss-security/2015/05/20/1
🔗 http://www.openwall.com/lists/oss-security/2015/05/21/11

相关漏洞威胁

CVE-2008-36527.8

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remote...

CVE-2005-37327.8

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in a...

CVE-2016-103967.5

The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing IS...

CVE-2005-03985.0

The KAME racoon daemon in ipsec-tools before 0.5 allows remote attackers to cause a denial of service (crash) via malformed ISAKMP...