Lucene search
Ubuntu.comUB:CVE-2015-3240HistoryNov 09, 2015 - 12:00 a.m.
CVE-2015-3240
2015-11-0900:00:00
ubuntu.com
ubuntu.com
6
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.045
Percentile
92.5%
The pluto IKE daemon in libreswan before 3.15 and Openswan before 2.6.45,
when built with NSS, allows remote attackers to cause a denial of service
(assertion failure and daemon restart) via a zero DH g^x value in a KE
payload in a IKE packet.
Bugs
Notes
| Author | Note |
|---|---|
| sbeattie | affects openswan if compiled with NSS |
Related
openvas
openvas
RedHat Update for libreswan RHSA-2015:1979-01
2015-11-05 00:00:00
Oracle: Security Advisory (ELSA-2015-1979)
2015-11-08 00:00:00
CentOS Update for libreswan CESA-2015:1979 centos7
2015-11-05 00:00:00
nessus
nessus
RHEL 7 : libreswan (RHSA-2015:1979)
2015-11-05 00:00:00
Scientific Linux Security Update : libreswan on SL7.x x86_64 (20151104)
2015-11-05 00:00:00
CentOS 7 : libreswan (CESA-2015:1979)
2015-11-04 00:00:00
cvelist
cvelist
CVE-2015-3240
2015-11-09 16:00:00
debiancve
debiancve
CVE-2015-3240
2015-11-09 16:59:01
cve
cve
CVE-2015-3240
2015-11-09 16:59:01
prion
prion
Code injection
2015-11-09 16:59:00
oraclelinux
oraclelinux
libreswan security and enhancement update
2015-11-03 00:00:00
centos
centos
libreswan security update
2015-11-03 21:50:51
nvd
nvd
CVE-2015-3240
2015-11-09 16:59:01
redhat
redhat
(RHSA-2015:1979) Moderate: libreswan security and enhancement update
2015-11-03 19:22:20
gentoo
gentoo
Libreswan: Multiple Vulnerabilities
2016-03-12 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
EPSS
0.045
Percentile
92.5%
Related for UB:CVE-2015-3240