CVE-2004-0607

NONE EPSS 91.8%
Published Dec 6, 200421y ago · Modified Jun 16, 20262w ago
Find Similar
Published Dec 6, 2004 21y ago
Last Modified Jun 16, 2026 2w ago

Description

The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.

Threat Intelligence

EPSS Exploit Probability
91.8% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 17

VendorProductVersionRange
ipsec-toolsipsec-tools0.3any
ipsec-toolsipsec-tools0.3.1any
ipsec-toolsipsec-tools0.3.2any
ipsec-toolsipsec-tools0.3_rc1any
ipsec-toolsipsec-tools0.3_rc2any
ipsec-toolsipsec-tools0.3_rc3any
ipsec-toolsipsec-tools0.3_rc4any
ipsec-toolsipsec-tools0.3_rc5any
kameracoon*any
kameracoon2003-07-11any
kameracoon2004-04-05any
kameracoon2004-04-07bany
kameracoon2004-05-03any
redhatenterprise_linux3.0any
redhatenterprise_linux3.0any
redhatenterprise_linux3.0any
redhatenterprise_linux_desktop3.0any

References 13

Remediation