New Search

A Security Vulnerability in the in.iked(1M) Service May Lead To a Denial of Service (DoS)

oval:org.mitre.oval:def:1966

The libike library in Sun Solaris 9 before 20070529 contains a logic error related to a certain pointer which allows remote attackers to cause a denial of service (in.iked daemon crash) by sending certain UDP packets with a source port different from 500. NOTE: this issue might overlap CVE-2006-2298.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Sun Solaris 9
Class:
vulnerability
Reference(s):
  • CVE-2007-2989
Product(s):