CVE-2009-0790

openswan: ISAKMP DPD remote DoS

Severity Score

5.0

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The pluto IKE daemon in Openswan and Strongswan IPsec 2.6 before 2.6.21 and 2.4 before 2.4.14, and Strongswan 4.2 before 4.2.14 and 2.8 before 2.8.9, allows remote attackers to cause a denial of service (daemon crash and restart) via a crafted (1) R_U_THERE or (2) R_U_THERE_ACK Dead Peer Detection (DPD) IPsec IKE Notification message that triggers a NULL pointer dereference related to inconsistent ISAKMP state and the lack of a phase2 state association in DPD.

El demonio IKE pluto de Openswan y Strongswan IPsec v2.6 anterior a v2.6.21 y v2.4 anterior a v2.4.14, y Strongswan v4.2 anterior a v4.2.14 y v2.8 anteior a v2.8.9; permite a atacantes remotos provocar una denegación de servicio (caída del demonio y reinicio) a través de (1) R_U_THERE o (2) R_U_THERE_ACK Detección de pares muertos (Dead Peer Detection -DPD) mensaje de Notificación IKE IPsec que provoca una referencia a puntero nulo relacionado con el estado inconsistente ISAKMP y la falta de un estado de asociacion phase2 en DPD.

*Credits: N/A

CVSS Scores

NISTv2 5.0

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2009-03-04 CVE Reserved
2009-03-30 CVE Published
2024-07-29 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (19)

URL	Tag	Source
http://www.securityfocus.com/archive/1/502270/100/0/threaded	Mailing List
http://www.securitytracker.com/id?1021949	Vdb Entry
http://www.securitytracker.com/id?1021950	Vdb Entry
http://www.vupen.com/english/advisories/2009/0886	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/49523	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11171	Signature

URL	Date	SRC

URL	Date	SRC
http://www.debian.org/security/2009/dsa-1759	2019-07-29
http://www.debian.org/security/2009/dsa-1760	2019-07-29
http://www.securityfocus.com/bid/34296	2019-07-29

URL	Date	SRC
http://download.strongswan.org/CHANGES4.txt	2019-07-29
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00010.html	2019-07-29
http://secunia.com/advisories/34472	2019-07-29
http://secunia.com/advisories/34483	2019-07-29
http://secunia.com/advisories/34494	2019-07-29
http://secunia.com/advisories/34546	2019-07-29
http://www.openswan.org/CVE-2009-0790/CVE-2009-0790.txt	2019-07-29
http://www.redhat.com/support/errata/RHSA-2009-0402.html	2019-07-29
https://access.redhat.com/security/cve/CVE-2009-0790	2009-03-30
https://bugzilla.redhat.com/show_bug.cgi?id=491895	2009-03-30

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.0 Search vendor "Strongswan" for product "Strongswan" and version "2.4.0"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.0a Search vendor "Strongswan" for product "Strongswan" and version "2.4.0a"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.1 Search vendor "Strongswan" for product "Strongswan" and version "2.4.1"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.2 Search vendor "Strongswan" for product "Strongswan" and version "2.4.2"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.3 Search vendor "Strongswan" for product "Strongswan" and version "2.4.3"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.4.4 Search vendor "Strongswan" for product "Strongswan" and version "2.4.4"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.6.0 Search vendor "Strongswan" for product "Strongswan" and version "2.6.0"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.6.1 Search vendor "Strongswan" for product "Strongswan" and version "2.6.1"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.6.2 Search vendor "Strongswan" for product "Strongswan" and version "2.6.2"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.6.3 Search vendor "Strongswan" for product "Strongswan" and version "2.6.3"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.6.4 Search vendor "Strongswan" for product "Strongswan" and version "2.6.4"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.0 Search vendor "Strongswan" for product "Strongswan" and version "2.8.0"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.1 Search vendor "Strongswan" for product "Strongswan" and version "2.8.1"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.2 Search vendor "Strongswan" for product "Strongswan" and version "2.8.2"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.3 Search vendor "Strongswan" for product "Strongswan" and version "2.8.3"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.4 Search vendor "Strongswan" for product "Strongswan" and version "2.8.4"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.5 Search vendor "Strongswan" for product "Strongswan" and version "2.8.5"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.6 Search vendor "Strongswan" for product "Strongswan" and version "2.8.6"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.7 Search vendor "Strongswan" for product "Strongswan" and version "2.8.7"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				2.8.8 Search vendor "Strongswan" for product "Strongswan" and version "2.8.8"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.0 Search vendor "Strongswan" for product "Strongswan" and version "4.2.0"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.1 Search vendor "Strongswan" for product "Strongswan" and version "4.2.1"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.2 Search vendor "Strongswan" for product "Strongswan" and version "4.2.2"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.3 Search vendor "Strongswan" for product "Strongswan" and version "4.2.3"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.4 Search vendor "Strongswan" for product "Strongswan" and version "4.2.4"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.5 Search vendor "Strongswan" for product "Strongswan" and version "4.2.5"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.6 Search vendor "Strongswan" for product "Strongswan" and version "4.2.6"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.7 Search vendor "Strongswan" for product "Strongswan" and version "4.2.7"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.8 Search vendor "Strongswan" for product "Strongswan" and version "4.2.8"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.9 Search vendor "Strongswan" for product "Strongswan" and version "4.2.9"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.10 Search vendor "Strongswan" for product "Strongswan" and version "4.2.10"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.11 Search vendor "Strongswan" for product "Strongswan" and version "4.2.11"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.12 Search vendor "Strongswan" for product "Strongswan" and version "4.2.12"		-		Affected
Strongswan Search vendor "Strongswan"		Strongswan Search vendor "Strongswan" for product "Strongswan"				4.2.13 Search vendor "Strongswan" for product "Strongswan" and version "4.2.13"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.0 Search vendor "Xelerance" for product "Openswan" and version "2.4.0"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.1 Search vendor "Xelerance" for product "Openswan" and version "2.4.1"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.2 Search vendor "Xelerance" for product "Openswan" and version "2.4.2"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.3 Search vendor "Xelerance" for product "Openswan" and version "2.4.3"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.4 Search vendor "Xelerance" for product "Openswan" and version "2.4.4"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.5 Search vendor "Xelerance" for product "Openswan" and version "2.4.5"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.9 Search vendor "Xelerance" for product "Openswan" and version "2.4.9"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.4.10 Search vendor "Xelerance" for product "Openswan" and version "2.4.10"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.03 Search vendor "Xelerance" for product "Openswan" and version "2.6.03"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.04 Search vendor "Xelerance" for product "Openswan" and version "2.6.04"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.05 Search vendor "Xelerance" for product "Openswan" and version "2.6.05"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.06 Search vendor "Xelerance" for product "Openswan" and version "2.6.06"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.07 Search vendor "Xelerance" for product "Openswan" and version "2.6.07"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.08 Search vendor "Xelerance" for product "Openswan" and version "2.6.08"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.09 Search vendor "Xelerance" for product "Openswan" and version "2.6.09"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.10 Search vendor "Xelerance" for product "Openswan" and version "2.6.10"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.11 Search vendor "Xelerance" for product "Openswan" and version "2.6.11"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.12 Search vendor "Xelerance" for product "Openswan" and version "2.6.12"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.13 Search vendor "Xelerance" for product "Openswan" and version "2.6.13"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.14 Search vendor "Xelerance" for product "Openswan" and version "2.6.14"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.15 Search vendor "Xelerance" for product "Openswan" and version "2.6.15"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.16 Search vendor "Xelerance" for product "Openswan" and version "2.6.16"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.17 Search vendor "Xelerance" for product "Openswan" and version "2.6.17"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.18 Search vendor "Xelerance" for product "Openswan" and version "2.6.18"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.19 Search vendor "Xelerance" for product "Openswan" and version "2.6.19"		-		Affected
Xelerance Search vendor "Xelerance"		Openswan Search vendor "Xelerance" for product "Openswan"				2.6.20 Search vendor "Xelerance" for product "Openswan" and version "2.6.20"		-		Affected