SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Firewall)  >   BorderManager Vendors:   Novell
Novell BorderManager Predictable ISAKMP Cookies May Let Remote Users Conduct Denial of Service and Replay Attacks
SecurityTracker Alert ID:  1017213
SecurityTracker URL:  http://securitytracker.com/id/1017213
CVE Reference:   CVE-2006-7155   (Links to External Site)
Updated:  May 30 2008
Original Entry Date:  Nov 13 2006
Impact:   Denial of service via network, Modification of user information
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 3.8 SP4 and prior versions
Description:   A vulnerability was reported in BorderManager. The software generates predictable ISAKMP cookie values, which may facilitate denial of service and replay attacks.

For a given source IP address and port, BorderManager generates the same responder cookie over the course of approximately one day instead of generating a unique and non-predictable value.

This may allow a remote user to cause denial of service conditions or conduct replay attacks.

This vulnerability was discovered using the NTA Monitor 'ike-scan' tool.

Impact:   A remote user may be able to conduct denial of service or replay attacks.
Solution:   The vendor has issued a patch (bmvpnsec1.exe).

The fix will be included in the upcoming BorderManager 3.8 SP5 release.

The Novell advisory is available at:

https://secure-support.novell.com/KanisaPlatform/Publishing/201/3003139_f.SAL_Public.html

Vendor URL:  secure-support.novell.com/KanisaPlatform/Publishing/201/3003139_f.SAL_Public.html (Links to External Site)
Cause:   Randomization error

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC