CVE-2004-0392
NONE EPSS 82.7%
Published Jun 14, 200422y ago · Modified Jun 16, 20262w ago
Published Jun 14, 2004 22y ago
Last Modified Jun 16, 2026 2w ago
Description
racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.
Threat Intelligence
EPSS Exploit Probability
82.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| kame | racoon | * | ≤2004-04-07a |
References 4
- ftp.sco.com ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.10/SCOSA-2005.10.txt
- orange.kame.net http://orange.kame.net/dev/query-pr.cgi?pr=555
- vuxml.org http://www.vuxml.org/freebsd/40fcf20f-8891-11d8-90d1-0020ed76ef5a.html
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/15893
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.