>> Openswan Packets Handling Remote Denial of Service Vulnerability
Title : Openswan Packets Handling Remote Denial of Service Vulnerability VUPEN ID : VUPEN/ADV-2005-2407 CVE ID : CVE-2005-3671
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2005-11-14
Technical Description
A vulnerability has been identified in Openswan, which could be exploited by remote attackers to cause a denial of service. This flaw is due to an error when handling specially crafted packets using "3DES" with an invalid key length, which could be exploited by remote attackers to cause a denial of service by sending malformed packets to a vulnerable application. For additional information, see : VUPEN/ADV-2005-2405
