CVE-2013-2052 - CERT CVE
ID CVE-2013-2052
Sažetak Buffer overflow in the atodn function in libreswan 3.0 and 3.1, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE daemon crash) and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be the same vulnerability as CVE-2013-2053 and CVE-2013-2054.
Reference
CVSS
Base: 5.1
Impact: 6.4
Exploitability:4.9
Pristup
VektorSloženostAutentikacija
NETWORK HIGH NONE
Impact
PovjerljivostCjelovitostDostupnost
PARTIAL PARTIAL PARTIAL
CVSS vektor AV:N/AC:H/Au:N/C:P/I:P/A:P
Zadnje važnije ažuriranje 11-10-2013 - 15:11
Objavljeno 09-07-2013 - 17:55