Vulnerability Name:

CVE-2009-1957 (CCN-50916)

Assigned:2009-05-27
Published:2009-05-27
Updated:2009-10-14
Summary:charon/sa/ike_sa.c in the charon daemon in strongSWAN before 4.3.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an invalid IKE_SA_INIT request that triggers "an incomplete state," followed by a CREATE_CHILD_SA request.
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-399
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2009-1957

Source: CONFIRM
Type: Patch
http://download.strongswan.org/CHANGES4.txt

Source: CONFIRM
Type: Patch
http://download.strongswan.org/patches/03_invalid_ike_state_patch/strongswan-4.x.x_invalid_ike_state.patch

Source: CCN
Type: strongSwan Web site
strongswan-4.x.x_invalid_ike_state.readme

Source: CONFIRM
Type: Vendor Advisory
http://download.strongswan.org/patches/03_invalid_ike_state_patch/strongswan-4.x.x_invalid_ike_state.readme

Source: SUSE
Type: UNKNOWN
SUSE-SR:2009:012

Source: CCN
Type: SA35296
strongSwan Two Denial of Service Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
35296

Source: SECUNIA
Type: UNKNOWN
35685

Source: SECUNIA
Type: UNKNOWN
36922

Source: DEBIAN
Type: UNKNOWN
DSA-1899

Source: DEBIAN
Type: DSA-1899
strongswan -- several vulnerabilities

Source: CCN
Type: OSVDB ID: 55046
strongSwan charon Daemon charon/sa/ike_sa.c IKE_SA_INIT Request Handling DoS

Source: BID
Type: UNKNOWN
35178

Source: CCN
Type: BID-35178
strongSwan IKE Request Multiple Remote Denial Of Service Vulnerabilities

Source: XF
Type: UNKNOWN
strongswan-charon-dos(50916)

Source: MLIST
Type: UNKNOWN
[strongSwan] 20090527 [strongSwan] ANNOUNCE: strongSwan 4.3.1 and 4.2.15 released

Source: SUSE
Type: SUSE-SR:2009:012
SUSE Security Summary Report

Vulnerable Configuration:Configuration 1:
  • cpe:/a:strongswan:strongswan:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.0a:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.4.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.5.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.16:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.6.20:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.7.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:2.8.8:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.0.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.10:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:*:*:*:*:*:*:*:* (Version <= 4.3.0)

    • Configuration CCN 1:
  • cpe:/a:strongswan:strongswan:4.2.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.11:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.10:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.9:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.8:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.7:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.6:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.2.13:*:*:*:*:*:*:*
  • OR cpe:/a:strongswan:strongswan:4.3.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:debian:debian_linux:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:debian:debian_linux:5.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20091957
    V
    		CVE-2009-1957
    2022-05-20
    oval:org.opensuse.security:def:32241
    P
    		Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)
    2021-12-14
    oval:org.opensuse.security:def:29433
    P
    		Security update for xen (Moderate)
    2021-10-07
    oval:org.opensuse.security:def:32107
    P
    		Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)
    2021-06-04
    oval:org.opensuse.security:def:29469
    P
    		Security update for jasper (Important)
    2021-02-16
    oval:org.opensuse.security:def:32022
    P
    		Security update for xen (Moderate)
    2020-12-29
    oval:org.opensuse.security:def:32634
    P
    		apache2-mod_perl on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28301
    P
    		Security update for ntfs-3g (Low)
    2020-12-01
    oval:org.opensuse.security:def:32739
    P
    		libxml2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28442
    P
    		Security update for xen (Important)
    2020-12-01
    oval:org.opensuse.security:def:28011
    P
    		Security update for apache2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32800
    P
    		unrar on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28647
    P
    		Security update for compat-wireless, compat-wireless-debuginfo, compat-wireless-debugsource, compat-wireless-kmp-default, compat-wireless-kmp-pae, compat-wireless-kmp-trace, compat-wireless-kmp-xen
    2020-12-01
    oval:org.opensuse.security:def:32334
    P
    		Security update for samba (Important)
    2020-12-01
    oval:org.opensuse.security:def:28023
    P
    		Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:33482
    P
    		Security update for OpenSC
    2020-12-01
    oval:org.opensuse.security:def:28735
    P
    		Security update for kvm and libvirt
    2020-12-01
    oval:org.opensuse.security:def:32478
    P
    		Security update for zsh (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28217
    P
    		Security update for libquicktime (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32021
    P
    		Security update for kernel-firmware (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28795
    P
    		Recommended update for openldap2 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:32690
    P
    		kdelibs3 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28358
    P
    		Security update for postgresql94 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32033
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:32778
    P
    		pyxml on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28594
    P
    		Security update for Perl
    2020-12-01
    oval:org.opensuse.security:def:28012
    P
    		Security update for apache2 (Important)
    2020-12-01
    oval:org.opensuse.security:def:32844
    P
    		cvs on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28696
    P
    		Security update for glibc
    2020-12-01
    oval:org.opensuse.security:def:32391
    P
    		Security update for tomcat6 (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:28087
    P
    		Security update for gd (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:33521
    P
    		Security update for strongswan
    2020-12-01
    oval:org.opensuse.security:def:28751
    P
    		Security update for libmspack
    2020-12-01
    oval:org.mitre.oval:def:8047
    P
    		DSA-1899 strongswan -- several vulnerabilities
    2014-06-23
    oval:org.mitre.oval:def:13577
    P
    		DSA-1899-1 strongswan -- several
    2014-06-23
    oval:org.debian:def:1899
    V
    		several vulnerabilities
    2009-10-02
    BACK
    strongswan strongswan 2.0.0
    strongswan strongswan 2.0.1
    strongswan strongswan 2.0.2
    strongswan strongswan 2.1.0
    strongswan strongswan 2.1.1
    strongswan strongswan 2.1.2
    strongswan strongswan 2.1.3
    strongswan strongswan 2.1.4
    strongswan strongswan 2.1.5
    strongswan strongswan 2.2.0
    strongswan strongswan 2.2.1
    strongswan strongswan 2.2.2
    strongswan strongswan 2.3.0
    strongswan strongswan 2.3.1
    strongswan strongswan 2.3.2
    strongswan strongswan 2.4.0
    strongswan strongswan 2.4.0a
    strongswan strongswan 2.4.1
    strongswan strongswan 2.4.2
    strongswan strongswan 2.4.3
    strongswan strongswan 2.4.4
    strongswan strongswan 2.5.0
    strongswan strongswan 2.5.1
    strongswan strongswan 2.5.2
    strongswan strongswan 2.5.3
    strongswan strongswan 2.5.4
    strongswan strongswan 2.5.5
    strongswan strongswan 2.5.6
    strongswan strongswan 2.5.7
    strongswan strongswan 2.6.0
    strongswan strongswan 2.6.1
    strongswan strongswan 2.6.2
    strongswan strongswan 2.6.3
    strongswan strongswan 2.6.4
    strongswan strongswan 2.6.16
    strongswan strongswan 2.6.20
    strongswan strongswan 2.7.0
    strongswan strongswan 2.8.0
    strongswan strongswan 2.8.1
    strongswan strongswan 2.8.2
    strongswan strongswan 2.8.3
    strongswan strongswan 2.8.4
    strongswan strongswan 2.8.5
    strongswan strongswan 2.8.6
    strongswan strongswan 2.8.7
    strongswan strongswan 2.8.8
    strongswan strongswan 4.0.0
    strongswan strongswan 4.0.1
    strongswan strongswan 4.0.2
    strongswan strongswan 4.0.3
    strongswan strongswan 4.0.4
    strongswan strongswan 4.0.5
    strongswan strongswan 4.0.6
    strongswan strongswan 4.0.7
    strongswan strongswan 4.1.0
    strongswan strongswan 4.1.1
    strongswan strongswan 4.1.2
    strongswan strongswan 4.1.3
    strongswan strongswan 4.1.4
    strongswan strongswan 4.1.5
    strongswan strongswan 4.1.6
    strongswan strongswan 4.1.7
    strongswan strongswan 4.1.8
    strongswan strongswan 4.1.9
    strongswan strongswan 4.1.10
    strongswan strongswan 4.1.11
    strongswan strongswan 4.2.0
    strongswan strongswan 4.2.1
    strongswan strongswan 4.2.10
    strongswan strongswan *
    strongswan strongswan 4.2.7
    strongswan strongswan 4.2.6
    strongswan strongswan 4.2.5
    strongswan strongswan 4.2.4
    strongswan strongswan 4.2.3
    strongswan strongswan 4.2.2
    strongswan strongswan 4.2.1
    strongswan strongswan 4.2.0
    strongswan strongswan 4.1.11
    strongswan strongswan 4.1.10
    strongswan strongswan 4.1.9
    strongswan strongswan 4.1.8
    strongswan strongswan 4.1.7
    strongswan strongswan 4.1.6
    strongswan strongswan 4.1.5
    strongswan strongswan 4.1.4
    strongswan strongswan 4.1.3
    strongswan strongswan 4.1.2
    strongswan strongswan 4.1.1
    strongswan strongswan 4.1.0
    strongswan strongswan 4.2.13
    strongswan strongswan 4.3.0
    debian debian linux 4.0
    debian debian linux 5.0