KAME Project Information for VU#459371

Multiple IPsec implementations do not adequately validate authentication data

Status

Affected

Vendor Statement

all past KAME-based implementations are vulnerable. which includes:

    MacOS 10.2
    BSDi/WindRiver BSD/OS 4.2 and beyond
    NetBSD 1.5 and beyond
    FreeBSD 4.0 and beyond


and probably (if they enable IPsec)
    Juniper JunOS
    Extreme Networks ExtremeWare
    WindRiver VxWorks
    Hitachi GR2000 router [CommWorks Total Control 100]
    Fujitsu GeoStream 920/940 router
    NEC IX5000
    IIJ SEIL

the problem has corrected on kame tree on 2002/08/21.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

For authoritative statements, please reference specific vendor records.

If you have feedback, comments, or additional information about this vulnerability, please send us email.