CVE-2004-0222

Name of the Vulnerable Software and Affected Versions OpenBSD versions 3.4 and earlier

Description The issue is related to multiple memory leaks in the isakmpd component, which can be exploited by remote attackers to cause a denial of service due to memory exhaustion. This can be achieved by sending certain ISAKMP packets, as demonstrated by the Striker ISAKMP Protocol Test Suite.

Recommendations For OpenBSD versions 3.4 and earlier, consider upgrading to a newer version to resolve the issue. As a temporary workaround, restrict access to the isakmpd component to minimize the risk of exploitation.