CVE-2002-0414

Name of the Vulnerable Software and Affected Versions NetBSD version 1.5.2 FreeBSD version 4.5

Description The issue affects KAME-derived implementations of IPsec and could cause a Security Gateway that does not use Encapsulating Security Payload to forward forged IPv4 packets, due to improper consultation of the Security Policy Database.

Recommendations For NetBSD version 1.5.2, update the IPsec implementation to properly consult the Security Policy Database. For FreeBSD version 4.5, update the IPsec implementation to properly consult the Security Policy Database. As a temporary workaround, consider restricting the forwarding of IPv4 packets by the Security Gateway until a proper update is applied.