Oval Definition:oval:org.mitre.oval:def:6116
Revision Date:2009-03-09Version:16
Title:Security Vulnerability with IKE Packet Handling in Solaris libike Library may Lead to a Crash of in.iked(1M)
Description:libike in Sun Solaris 9 and 10, and OpenSolaris before snv_100, does not properly check packets, which allows remote attackers to cause a denial of service (in.iked daemon crash) via an unspecified IKE packet, a different vulnerability than CVE-2007-2989.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2009-0267
Platform(s):Sun Solaris 10
Sun Solaris 9
Product(s):
Definition Synopsis
  • Software Section
  • Solaris 9 (SPARC) meets Sun Alert 247406
  • Solaris 9 (SPARC) is installed
  • AND NOT Patch 113451-15 or later installed
  • OR Solaris 10 (SPARC) meets Sun Alert 247406
  • Solaris 10 (SPARC) is installed
  • AND NOT Patch 140196-01 or later installed
  • OR Solaris 9 (x86) meets Sun Alert 247406
  • Solaris 9 (x86) is installed
  • AND NOT Patch 114435-14 or later installed
  • OR Solaris 10 (x86) meets Sun Alert 247406
  • Solaris 10 (x86) is installed
  • AND NOT Patch 140414-01 or later installed
  • AND File /etc/inet/ike/config exists
    • BACK