CVE-2002-2222

Name of the Vulnerable Software and Affected Versions: isakmpd versions prior to 20020403 1 OpenBSD version 3.1

Description: The issue allows remote attackers to cause a denial of service by sending Internet Key Exchange (IKE) payloads out of sequence. This is due to a problem in the isakmpd/message.c file.

Recommendations: For isakmpd versions prior to 20020403 1, update to version 20020403 1 or later. For OpenBSD version 3.1, consider upgrading to a later version of OpenBSD that may include fixes for this issue. As a temporary workaround, consider restricting access to the IKE protocol to minimize the risk of exploitation.