PT-2016-5355 · Libreswan · Libreswan

Published

2016-04-18

Updated

2017-02-07

CVE-2016-3071

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Libreswan version 3.16

Description The issue might allow remote attackers to cause a denial of service, resulting in a daemon restart, via an IKEv2 aes xcbc transform.

Recommendations For Libreswan version 3.16, consider updating to a newer version that contains a fix for this issue, if available. As a temporary workaround, restrict access to the IKEv2 aes xcbc transform to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20CWE-310

Related Identifiers

CVE-2016-3071

Affected Products

Libreswan

PT-2016-5355 · Libreswan · Libreswan

CVE-2016-3071

Weakness Enumeration

Related Identifiers

Affected Products

References · 7