CVE-2015-4047
UnknownEPSS 9.62%
Last modified
CVE-2015-4047 is a vulnerability of currently unknown severity. racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.. EPSS estimates a 9.62% chance of exploitation in the next 30 days.
Description
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Ipsec-Tools | Ipsec-Tools | 0.8.2 |
| Canonical | Ubuntu Linux | 12.04 |
| Fedoraproject | Fedora | 20 |
| Fedoraproject | Fedora | 21 |
| F5 | Big-Ip Application Acceleration Manager | >= 11.4.0, <= 11.6.4 |
| F5 | Big-Ip Application Acceleration Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Application Acceleration Manager | 13.0.0 |
| F5 | Big-Ip Local Traffic Manager | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Local Traffic Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Local Traffic Manager | 13.0.0 |
| F5 | Big-Ip Advanced Firewall Manager | >= 11.3.0, <= 11.6.4 |
| F5 | Big-Ip Advanced Firewall Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Advanced Firewall Manager | 13.0.0 |
| F5 | Big-Ip Analytics | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Analytics | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Analytics | 13.0.0 |
| F5 | Big-Ip Access Policy Manager | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Access Policy Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Access Policy Manager | 13.0.0 |
| F5 | Big-Ip Application Security Manager | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Application Security Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Application Security Manager | 13.0.0 |
| F5 | Big-Ip Domain Name System | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Domain Name System | 13.0.0 |
| F5 | Big-Ip Edge Gateway | >= 11.0.0, <= 11.3.0 |
| F5 | Big-Ip Global Traffic Manager | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Link Controller | >= 11.0.0, <= 11.6.4 |
| F5 | Big-Ip Link Controller | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Link Controller | 13.0.0 |
| F5 | Big-Ip Policy Enforcement Manager | >= 11.3.0, <= 11.6.4 |
| F5 | Big-Ip Policy Enforcement Manager | >= 12.0.0, <= 12.1.4 |
| F5 | Big-Ip Policy Enforcement Manager | 13.0.0 |
| F5 | Big-Ip Protocol Security Manager | >= 11.0.0, <= 11.4.1 |
| F5 | Big-Ip Wan Optimization Manager | >= 11.0.0, <= 11.3.0 |
| F5 | Big-Ip Webaccelerator | >= 11.0.0, <= 11.3.0 |
| F5 | Big-Iq Adc | 4.5.0 |
| F5 | Big-Iq Centralized Management | 4.6.0 |
| F5 | Big-Iq Cloud | >= 4.0.0, <= 4.5.0 |
| F5 | Big-Iq Cloud And Orchestration | 1.0.0 |
| F5 | Big-Iq Device | >= 4.2.0, <= 4.5.0 |
| F5 | Big-Iq Security | >= 4.0.0, <= 4.5.0 |
| F5 | Enterprise Manager | >= 3.0.0, <= 3.1.1 |
| Debian | Debian Linux | 7.0 |
| Debian | Debian Linux | 8.0 |
| Debian | Debian Linux | 9.0 |
References
- http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159482.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159549.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/131992/IPsec-Tools-0.8.2-Denial-Of-Service.htmlThird Party Advisory, VDB Entry
- http://seclists.org/fulldisclosure/2015/May/81Exploit, Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2015/May/83Exploit, Mailing List, Third Party Advisory
- http://www.debian.org/security/2015/dsa-3272Third Party Advisory
- http://www.openwall.com/lists/oss-security/2015/05/20/1Exploit, Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2015/05/21/11Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/74739Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032397Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2623-1Third Party Advisory
- https://support.f5.com/csp/article/K05013313Third Party Advisory
- https://www.altsci.com/ipsec/ipsec-tools-sa.htmlExploit, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159482.htmlMailing List, Third Party Advisory
- http://lists.fedoraproject.org/pipermail/package-announce/2015-June/159549.htmlMailing List, Third Party Advisory
- http://packetstormsecurity.com/files/131992/IPsec-Tools-0.8.2-Denial-Of-Service.htmlThird Party Advisory, VDB Entry
- http://seclists.org/fulldisclosure/2015/May/81Exploit, Mailing List, Third Party Advisory
- http://seclists.org/fulldisclosure/2015/May/83Exploit, Mailing List, Third Party Advisory
- http://www.debian.org/security/2015/dsa-3272Third Party Advisory
- http://www.openwall.com/lists/oss-security/2015/05/20/1Exploit, Mailing List, Third Party Advisory
- http://www.openwall.com/lists/oss-security/2015/05/21/11Mailing List, Third Party Advisory
- http://www.securityfocus.com/bid/74739Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1032397Third Party Advisory, VDB Entry
- http://www.ubuntu.com/usn/USN-2623-1Third Party Advisory
- https://support.f5.com/csp/article/K05013313Third Party Advisory
- https://www.altsci.com/ipsec/ipsec-tools-sa.htmlExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-4047?
racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon crash) via a series of crafted UDP requests.
How severe is CVE-2015-4047?
Severity scoring for CVE-2015-4047 is pending analysis. The EPSS model estimates a 9.62% probability of exploitation in the next 30 days.
How do I fix CVE-2015-4047?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2015-4047?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST