CVE-2016-10396

Name: CVE-2016-10396
Creator: NVD / NIST
Published: 2017-07-06T01:29:00.177+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 2.93%

Last modified Jun 17, 2026

CVE-2016-10396 is a vulnerability of currently unknown severity. The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The implementation permits a remote attacker to exhaust computational resources on the remote endpoint by repeatedly sending ISAKMP fragment packets in a particular order such that the worst-case computational complexity is realized in the algorithm utilized to determine if reassembly of the fragments can take place.. EPSS estimates a 2.93% chance of exploitation in the next 30 days.

Description

The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing ISAKMP fragments. The implementation permits a remote attacker to exhaust computational resources on the remote endpoint by repeatedly sending ISAKMP fragment packets in a particular order such that the worst-case computational complexity is realized in the algorithm utilized to determine if reassembly of the fragments can take place.

Metrics

EPSS Probability

2.93%

85.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-407

Affected Software

Vendor	Product	Versions
Ipsec-Tools	Ipsec-Tools	0.8.2

References

http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/isakmp_frag.c.diff?r1=1.5&r2=1.5.36.1Mailing List, Third Party Advisory
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/isakmp_frag.c?only_with_tag=MAINThird Party Advisory
https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=51682Mailing List, Third Party Advisory
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/isakmp_frag.c.diff?r1=1.5&r2=1.5.36.1Mailing List, Third Party Advisory
http://cvsweb.netbsd.org/bsdweb.cgi/src/crypto/dist/ipsec-tools/src/racoon/isakmp_frag.c?only_with_tag=MAINThird Party Advisory
https://gnats.netbsd.org/cgi-bin/query-pr-single.pl?number=51682Mailing List, Third Party Advisory

Timeline

Published: Jul 6, 2017
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2016-10396?

How severe is CVE-2016-10396?

Severity scoring for CVE-2016-10396 is pending analysis. The EPSS model estimates a 2.93% probability of exploitation in the next 30 days.

How do I fix CVE-2016-10396?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2016-10396?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST