CVE-2006-1646

Name of the Vulnerable Software and Affected Versions: NetBSD versions 1.6, 2.x before 20060119 Certain FreeBSD releases Possibly other distributions of BSD or Linux operating systems

Description: The issue allows remote attackers to cause a denial of service via crafted IKE packets. This can be repeatedly exploited to produce a denial of service. The vulnerability was identified by the University of Oulu Secure Programming Group (OUSPG) "PROTOS" Test Suite for IPSec.

Recommendations: For NetBSD versions 1.6, 2.x before 20060119, consider updating to a version after 20060119 to address the issue. For certain FreeBSD releases, update to a release that includes the fix for this issue. For possibly other distributions of BSD or Linux operating systems, check with the distribution provider for an update that addresses this issue. As a temporary workaround, consider restricting the use of IKE packets to minimize the risk of exploitation.