CVE-2008-4551
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
strongSwan 4.2.6 and earlier allows remote attackers to cause a denial of service (daemon crash) via an IKE_SA_INIT message with a large number of NULL values in a Key Exchange payload, which triggers a NULL pointer dereference for the return value of the mpz_export function in the GNU Multiprecision Library (GMP).
strongSwan 4.2.6 y anteriores permite a atacantes remotos provocar una denegación de servicio (caída del demonio) mediante un mensaje con un número grande de valores NULL en una carga útil Key Exchange, lo que dispara una referencia a un puntero NULL para el valor de retorno de la función mpz_export en la GNU Multiprecision Library (GMP) (Biblioteca de Multiprecisión GNU).
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-10-14 CVE Reserved
- 2008-10-14 CVE Published
- 2024-02-11 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-399: Resource Management Errors
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://download.strongswan.org/CHANGES4.txt | X_refsource_confirm | |
| http://labs.mudynamics.com/advisories/MU-200809-01.txt | X_refsource_misc | |
| http://www.securityfocus.com/bid/31291 | Vdb Entry | |
| http://www.securitytracker.com/id?1020903 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2008/2660 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/31963 | 2011-03-08 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | <= 4.2.6 Search vendor "Strongswan" for product "Strongswan" and version " <= 4.2.6" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.0.0 Search vendor "Strongswan" for product "Strongswan" and version "2.0.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.0.1 Search vendor "Strongswan" for product "Strongswan" and version "2.0.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.0.2 Search vendor "Strongswan" for product "Strongswan" and version "2.0.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.0 Search vendor "Strongswan" for product "Strongswan" and version "2.1.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.1 Search vendor "Strongswan" for product "Strongswan" and version "2.1.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.2 Search vendor "Strongswan" for product "Strongswan" and version "2.1.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.3 Search vendor "Strongswan" for product "Strongswan" and version "2.1.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.4 Search vendor "Strongswan" for product "Strongswan" and version "2.1.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.1.5 Search vendor "Strongswan" for product "Strongswan" and version "2.1.5" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.2.0 Search vendor "Strongswan" for product "Strongswan" and version "2.2.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.2.1 Search vendor "Strongswan" for product "Strongswan" and version "2.2.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.2.2 Search vendor "Strongswan" for product "Strongswan" and version "2.2.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.3.0 Search vendor "Strongswan" for product "Strongswan" and version "2.3.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.3.1 Search vendor "Strongswan" for product "Strongswan" and version "2.3.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.3.2 Search vendor "Strongswan" for product "Strongswan" and version "2.3.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.4.0 Search vendor "Strongswan" for product "Strongswan" and version "2.4.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.4.0a Search vendor "Strongswan" for product "Strongswan" and version "2.4.0a" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.4.1 Search vendor "Strongswan" for product "Strongswan" and version "2.4.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.4.2 Search vendor "Strongswan" for product "Strongswan" and version "2.4.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.4.3 Search vendor "Strongswan" for product "Strongswan" and version "2.4.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.0 Search vendor "Strongswan" for product "Strongswan" and version "2.5.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.1 Search vendor "Strongswan" for product "Strongswan" and version "2.5.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.2 Search vendor "Strongswan" for product "Strongswan" and version "2.5.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.3 Search vendor "Strongswan" for product "Strongswan" and version "2.5.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.4 Search vendor "Strongswan" for product "Strongswan" and version "2.5.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.5 Search vendor "Strongswan" for product "Strongswan" and version "2.5.5" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.6 Search vendor "Strongswan" for product "Strongswan" and version "2.5.6" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.5.7 Search vendor "Strongswan" for product "Strongswan" and version "2.5.7" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.6.0 Search vendor "Strongswan" for product "Strongswan" and version "2.6.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.6.1 Search vendor "Strongswan" for product "Strongswan" and version "2.6.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.6.2 Search vendor "Strongswan" for product "Strongswan" and version "2.6.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.6.3 Search vendor "Strongswan" for product "Strongswan" and version "2.6.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.6.4 Search vendor "Strongswan" for product "Strongswan" and version "2.6.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 2.7.0 Search vendor "Strongswan" for product "Strongswan" and version "2.7.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.0 Search vendor "Strongswan" for product "Strongswan" and version "4.0.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.1 Search vendor "Strongswan" for product "Strongswan" and version "4.0.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.2 Search vendor "Strongswan" for product "Strongswan" and version "4.0.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.3 Search vendor "Strongswan" for product "Strongswan" and version "4.0.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.4 Search vendor "Strongswan" for product "Strongswan" and version "4.0.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.5 Search vendor "Strongswan" for product "Strongswan" and version "4.0.5" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.6 Search vendor "Strongswan" for product "Strongswan" and version "4.0.6" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.0.7 Search vendor "Strongswan" for product "Strongswan" and version "4.0.7" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.0 Search vendor "Strongswan" for product "Strongswan" and version "4.1.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.1 Search vendor "Strongswan" for product "Strongswan" and version "4.1.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.2 Search vendor "Strongswan" for product "Strongswan" and version "4.1.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.3 Search vendor "Strongswan" for product "Strongswan" and version "4.1.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.4 Search vendor "Strongswan" for product "Strongswan" and version "4.1.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.5 Search vendor "Strongswan" for product "Strongswan" and version "4.1.5" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.6 Search vendor "Strongswan" for product "Strongswan" and version "4.1.6" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.7 Search vendor "Strongswan" for product "Strongswan" and version "4.1.7" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.8 Search vendor "Strongswan" for product "Strongswan" and version "4.1.8" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.9 Search vendor "Strongswan" for product "Strongswan" and version "4.1.9" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.10 Search vendor "Strongswan" for product "Strongswan" and version "4.1.10" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.1.11 Search vendor "Strongswan" for product "Strongswan" and version "4.1.11" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.0 Search vendor "Strongswan" for product "Strongswan" and version "4.2.0" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.1 Search vendor "Strongswan" for product "Strongswan" and version "4.2.1" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.2 Search vendor "Strongswan" for product "Strongswan" and version "4.2.2" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.3 Search vendor "Strongswan" for product "Strongswan" and version "4.2.3" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.4 Search vendor "Strongswan" for product "Strongswan" and version "4.2.4" | - |
Affected
| ||||||
| Strongswan Search vendor "Strongswan" | Strongswan Search vendor "Strongswan" for product "Strongswan" | 4.2.5 Search vendor "Strongswan" for product "Strongswan" and version "4.2.5" | - |
Affected
| ||||||