IPsec Vulnerability in KAME-derived Implementations on BSD Systems
CVE-2002-0414

Currently unrated

Key Information:

Vendor: Netbsd
Status: Netbsd; FreeBSD; OpenBSD
Vendor: CVE Published:; 12 August 2002

What is CVE-2002-0414?

KAME-derived IPsec implementations on systems like NetBSD 1.5.2 and FreeBSD 4.5 exhibit a vulnerability where the Security Policy Database (SPD) is not consulted correctly. This can lead to a Security Gateway (SG) erroneously forwarding forged IPv4 packets, ultimately compromising the integrity of the network's security. This issue requires prompt attention to ensure proper filtering and security policies are enforced.

References

http://www.securityfocus.com/bid/4224

vdb-entryx_refsource_BID

http://archives.neohapsis.com/archives/vulnwatch/2002-q1/...

mailing-listx_refsource_VULNWATCH

http://www.osvdb.org/5304

vdb-entryx_refsource_OSVDB

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 12, 2002
Vulnerability Reserved
Jun 7, 2002

CVE-2002-0414 Data

JSON

Netbsd

What is CVE-2002-0414?

References

Timeline