公開日:2004/11/18 最終更新日:2004/11/18

JVNVU#725401
Striker テストツールについて

概要

Striker テストツールによりいくつかの脆弱性が確認されています。

VU#223273
Integer underflow vulnerability in isakmpd "Certificate Request Payload" handling

VU#996177
Multiple memory leak vulnerabilities in isakmpd

VU#349113
isakmpd fails to handle ISAKMP packets with "Payload Length" of zero

VU#524497
isakmpd crashes when handling ISAKMP packets with malformed "Delete Payload"

VU#785945
isakmpd crashes when handling ISAKMP packets with malformed "Security Association Payload"

VU#432097
Novell Bordermanager VPN Service denial-of-service vulnerability

VU#492558
tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling

VU#240790
tcpdump contains buffer overflow vulnerability in ISAKMP "Delete Payload" handling

Striker テストツールは Rapid 7より配布されています。
ツール入手法についての詳細は advisory@rapid7.com へお問合せください。

影響を受けるシステム

詳細情報

想定される影響

想定される影響は個々の脆弱性により異なります。

対策方法

ベンダ情報

参考情報

  1. Rapid7 Security Advisory R7-0018
    OpenBSD isakmpd payload handling denial-of-service vulnerabilities
  2. Rapid7 Security Advisory R7-0017
    TCPDUMP ISAKMP payload handling denial-of-service vulnerabilities
  3. US-CERT Vulnerability Note VU#223273
    Integer underflow vulnerability in isakmpd "Certificate Request Payload" handling
  4. US-CERT Vulnerability Note VU#996177
    Multiple memory leak vulnerabilities in isakmpd
  5. US-CERT Vulnerability Note VU#349113
    isakmpd fails to handle ISAKMP packets with "Payload Length" of zero
  6. US-CERT Vulnerability Note VU#524497
    isakmpd crashes when handling ISAKMP packets with malformed "Delete Payload"
  7. US-CERT Vulnerability Note VU#785945
    isakmpd crashes when handling ISAKMP packets with malformed "Security Association Payload"
  8. US-CERT Vulnerability Note VU#432097
    Novell Bordermanager VPN Service denial-of-service vulnerability
  9. US-CERT Vulnerability Note VU#492558
    tcpdump contains integer underflow vulnerability in ISAKMP "Identification Payload" handling
  10. US-CERT Vulnerability Note VU#240790
    tcpdump contains buffer overflow vulnerability in ISAKMP "Delete Payload" handling
  11. ISS X-Force Database: openbsd-isakmp-integer-underflow (15629)
    OpenBSD ISAKMP Cert Request payload integer underflow
  12. ISS X-Force Database: openbsd-isakmp-memory-leak (15519)
    OpenBSD ISAKMP memory leak
  13. ISS X-Force Database: openbsd-isakmp-delete-dos (15630)
    OpenBSD ISAKMP delete payload denial of service
  14. ISS X-Force Database: openbsd-isakmp-zerolength-dos (15518)
    OpenBSD ISAKMP zero-length payload denial of service
  15. ISS X-Force Database: openbsd-isakmp-ipsec-dos (15628)
    OpenBSD ISAKMP IPSEC SA payload denial of service
  16. ISS X-Force Database: tcpdump-isakmp-integer-underflow (15679)
    tcpdump ISAKMP packet integer underflow
  17. ISS X-Force Database: tcpdump-isakmp-delete-bo (15680)
    tcpdump ISAKMP packet delete payload buffer overflow

JPCERT/CCからの補足情報

JPCERT/CCによる脆弱性分析結果

謝辞

関連文書

JPCERT 緊急報告
JPCERT REPORT
CERT Advisory
CPNI Advisory
TRnotes
CVE CAN-2004-0220
VU#223273,XF15629
JVN iPedia