Showing 1 - 1 of 1

CVE-2005-0039

Status Candidate

Overview

Certain configurations of IPsec, when using Encapsulating Security Payload (ESP) in tunnel mode, integrity protection at a higher layer, or Authentication Header (AH), allow remote attackers to decrypt IPSec communications by modifying the outer packet in ways that cause plaintext data from the inner packet to be returned in ICMP messages, as demonstrated using bit-flipping attacks and (1) Destination Address Rewriting, (2) a modified header length that causes portions of the packet to be interpreted as IP Options, or (3) a modified protocol field and source address.

Related Files

ipsec.niscc.txt: Posted Aug 7, 2005; Site niscc.gov.uk; Three attacks that apply to certain configurations of IPsec have been identified. These configurations use Encapsulating Security Payload (ESP) in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to provide integrity protection are also vulnerable.; tags | advisory, protocol; advisories | CVE-2005-0039; SHA-256 | d0606c851923c75a62e9d1bf58eb7a365eb5e42a9a5b404504811b1aaae0ad08; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 133 files
Ubuntu 88 files
indoushka 33 files
Debian 26 files
Apple 22 files
Gentoo 18 files
nu11secur1ty 15 files
LiquidWorm 9 files
Google Security Research 7 files
jheysel-r7 4 files

File Archives

Systems

AIX (428)
Apple (2,025)
BSD (375)
CentOS (57)
Cisco (1,925)
Debian (6,851)
Fedora (1,692)
FreeBSD (1,246)
Gentoo (4,340)
HPUX (879)
iOS (357)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (46,858)
Mac OS X (687)
Mandriva (3,105)
NetBSD (256)
OpenBSD (485)
RedHat (13,927)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,953)
UNIX (9,319)
UnixWare (186)
Windows (6,590)
Other

CVE-2005-0039

Overview

Related Files

File Archive:

October 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems