회원가입메일  
   
 
> 취약성 정보
이름 Level 1, 95 Point 커베로스 2006-03-24 00:08:14
제목 FreeBSD IPsec 재생 취약점
click="window.open(this.href);return false;">http://www.securityfocus.com/bid/17191Bugtraq ID:  17191  
Class:  Design Error  
CVE:  CVE-2006-0905

Remote:  Yes  
Local:  No  
Published:  Mar 22 2006 12:00AM  
Updated:  Mar 22 2006 07:49PM  
Credit:  Pawel Jakub Dawidek is credited with the discovery of this issue.  
Vulnerable:  FreeBSD FreeBSD 6.0 -STABLE
FreeBSD FreeBSD 6.0 -RELEASE
FreeBSD FreeBSD 5.4 -RELENG
FreeBSD FreeBSD 5.4 -RELEASE
FreeBSD FreeBSD 5.4 -PRERELEASE
FreeBSD FreeBSD 5.3 -STABLE
FreeBSD FreeBSD 5.3 -RELENG
FreeBSD FreeBSD 5.3 -RELEASE
FreeBSD FreeBSD 5.3
FreeBSD FreeBSD 5.2.1 -RELEASE
FreeBSD FreeBSD 5.2 -RELENG
FreeBSD FreeBSD 5.2 -RELEASE
FreeBSD FreeBSD 5.2
FreeBSD FreeBSD 5.1 -RELENG
FreeBSD FreeBSD 5.1 -RELEASE/Alpha
FreeBSD FreeBSD 5.1 -RELEASE-p5
FreeBSD FreeBSD 5.1 -RELEASE
FreeBSD FreeBSD 5.1
FreeBSD FreeBSD 5.0 -RELENG
FreeBSD FreeBSD 5.0 -RELEASE-p14
FreeBSD FreeBSD 5.0 alpha
FreeBSD FreeBSD 5.0
FreeBSD FreeBSD 4.11 -STABLE
FreeBSD FreeBSD 4.11 -RELENG
FreeBSD FreeBSD 4.11 -RELEASE-p3
FreeBSD FreeBSD 4.10 -RELENG
FreeBSD FreeBSD 4.10 -RELEASE-p8
FreeBSD FreeBSD 4.10 -RELEASE
FreeBSD FreeBSD 4.10
FreeBSD FreeBSD 4.9 -RELENG
FreeBSD FreeBSD 4.9 -PRERELEASE
FreeBSD FreeBSD 4.9
FreeBSD FreeBSD 4.8 -RELENG
FreeBSD FreeBSD 4.8 -RELEASE-p7
FreeBSD FreeBSD 4.8 -PRERELEASE
FreeBSD FreeBSD 4.8
FreeBSD FreeBSD 5.4-STABLE
FreeBSD FreeBSD 4.10-PRERELEASE

Not Vulnerable:  

상세설명
========

FreeBSD의 IPsec은 원격 재생 공격에 취약하다. 이 취약점은 IPsec 패킷의 시퀀스 넘버의
부적절한 핸들링 때문이다.

이 취약점은 원격 공격자들이 IPsec 트래픽을 재생할 수 있도록 한다. 성공한 공격자들의
정확한 실행 결과는 리플레이되어지고 있는 트래픽의 특성에 의존한다. 그들이 자신의
안티-리플레이 특성을 제공하지 않으므로 이것은 오로지 UDP와 같은 상층 레벨의 프로토콜에
영향을 미칠것이다.


해결방법
========

벤더는 권고문을 발표했으며, 이에 따라 이 문제를 해결하기 패치를 제공했다. 패치는
2006-03-22 16:03: 25 UTC 시간으로 FreeBSD CVS에 제공되었다.
좀 더 자세한 정보는 참조된 권고문을 봐라.

FreeBSD FreeBSD 5.4-STABLE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.10 -RELEASE-p8

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.10 -RELEASE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.10 -RELENG

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.10

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.11 -RELEASE-p3

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.11 -RELENG

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 4.11 -STABLE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.3

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.3 -RELEASE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.3 -RELENG

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.3 -STABLE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.4 -RELENG

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.4 -PRERELEASE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 5.4 -RELEASE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 6.0 -RELEASE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


FreeBSD FreeBSD 6.0 -STABLE

FreeBSD ipsec.patch
ftp://ftp.FreeBSD.org/pub/FreeBSD/CERT/patches/SA-06:11/ipsec.patch


레퍼런스
========

FreeBSD Homepage (FreeBSD)
FreeBSD Security Information (FreeBSD)
Level 6, 3710 Point ugg boots
Good ! Ilike it ! Welcome to read following news:<A href="http://www.shoppingnikesb.com/">cheap nike dunks</A>,<A href="http://www.uggsvipshop.com/ugg-bailey-button-boots.html">UGG Bailey Button boots</A>,<STRONG><A style="COLOR: #7fff7f" href="http://www.shoppingnikesb.com/">Nike dunk sb</A></STRONG>,<STRONG><A href="http://www.uggsvipshop.com/">Ugg boots</A></STRONG>,<STRONG><A href="http://www.hothotshoes.com/">Gucci shoes</A></STRONG>,<A href="http://www.shoppingnikesb.com/new-sb">new nike sb</A>,<A href="http://www.uggsvipshop.com/ugg-classic-short-boots.html">UGG Classic short boots</A>,<A href="http://www.shoppingtiffany.com/tiffany-rings">tiffany rings</A>,<A href="http://www.shoppingnikesb.com/nike-dunk-low">nike dunk low</A>,<A href="http://www.shoppingtiffany.com/tiffany-earrings">Tiffany Earrings</A>.

 2009.09.22 00:24

 

목록
837 Apple Mac OS X 인텔-기반 로컬 인.. [6]  Level 6, 3465 Point innovation 2006.04.05 3602
836 Barracuda Spam Firewall A.. [3]  Level 5, 3065 Point RiceBox 2006.04.04 3662
835 PHPBB Profile.PHP 크로스-사이트.. [6]  Level 6, 3465 Point innovation 2006.04.03 6817
834 Microsoft 윈도우즈 help 이미지 처.. [2]  Level 1, 95 Point 커베로스 2006.03.31 4110
833 NetBSD If_Bridge(4) Kerne.. [2]  Level 6, 3465 Point innovation 2006.03.31 4106
832 Apple Mac OS X ImageIO 원격.. [3]  Level 4, 1440 Point avy 2006.03.30 4403
831 PHP Html_Entity_Decode() .. [3]  Level 6, 3465 Point innovation 2006.03.30 4507
830 데비안 GNU/Linux 여러 패키지들의 안전.. [2]  Level 6, 3465 Point innovation 2006.03.29 3313
829 Microsoft Office XP Array.. [4]  Level 6, 3465 Point innovation 2006.03.27 3820
828 Internet Security Systems.. [3]  Level 6, 3465 Point innovation 2006.03.25 3541
827 리눅스 커널 Get_Compat_Timespe.. [1]  Level 6, 3465 Point innovation 2006.03.25 2976
826 IBM 티볼리 Business Systems .. [4]  Level 6, 3465 Point innovation 2006.03.24 3426
825 FreeBSD IPsec 재생 취약점 [2]  Level 1, 95 Point 커베로스 2006.03.24 4155
824 EasyMoblog Img.PHP 크로스-사이.. [3]  Level 4, 1440 Point avy 2006.03.23 3424
823 Sendmail Asynchronous Sig.. [1]  Level 5, 3065 Point RiceBox 2006.03.23 6344
822 마이크로소프트 인터넷 익스플로러 CreateT.. [3]  Level 6, 3465 Point innovation 2006.03.23 3380
821 마이크로소프트 ASP.NET COM 컴포넌트 .. [6]  Level 6, 3465 Point innovation 2006.03.23 4097
820 마이크로소프트 인터넷 익스플로러의 명확히 알려.. [6]  Level 6, 3465 Point innovation 2006.03.22 3409
819 Novell SSL 서버의 여러 취약점 [3]  Level 6, 3465 Point innovation 2006.03.22 3410
818 ASP Portal 다양한 SQL 인젝션 취약.. [2]  Level 5, 3065 Point RiceBox 2006.03.22 3541
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14