CVE-2009-1574

Table of Contents

Impact:
Important
Public Date:
2009-04-22
CWE:
CWE-476
Bugzilla:
497990: CVE-2009-1574 ipsec-tools: racoon NULL dereference in fragmentation code

The MITRE CVE dictionary describes this issue as:

racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragmented packets without a payload, which triggers a NULL pointer dereference.

Find out more about CVE-2009-1574 from the MITRE CVE dictionary dictionary and NIST NVD.

CVSS v2 metrics

Base Score 5
Base Metrics AV:N/AC:L/Au:N/C:N/I:N/A:P
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Partial

Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 5 (ipsec-tools) RHSA-2009:1036 2009-05-18
Last Modified

CVE description copyright © 2017, The MITRE Corporation