Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2004-0392

racoon before 20040407b allows remote attackers to cause a denial of service (infinite loop and dropped connections) via an IKE message with a malformed Generic Payload Header containing invalid (1) "Security Association Next Payload" and (2) "RESERVED" fields.

  • Published: Jun 14, 2004
  • Updated: Apr 13, 2023
  • CVE: CVE-2004-0392
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Software From Fixed in
kame / racoon - 2004-04-07a.x