CVE-2004-0607

Published Dec 6, 2004

Last updated 7 years ago

CVSS info 10.0

Overview

Description: The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ADAAFB6A-A22F-4539-8B12-AD5BE5829208"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E7BC2543-F91E-40A0-AF3D-47A8EC7A5FC8"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30B05AF4-3F58-439D-BADD-C9758C4BBA0B"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3_rc1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B925C34-CB57-443E-8190-34D490377F49"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3_rc2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F534ABF0-F79F-4BDD-AD0C-705868AD72C3"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3_rc3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9CDF7C24-5329-491C-B5F5-E2C2513B244C"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3_rc4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69EE38D7-0EC3-4349-ADA6-121D0A0C2DE7"
          },
          {
            "criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.3_rc5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "947B349F-6D8D-4EE2-8350-F544F8B152C4"
          },
          {
            "criteria": "cpe:2.3:a:kame:racoon:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E477F0A9-8027-435B-8F99-A15D1D74220A"
          },
          {
            "criteria": "cpe:2.3:a:kame:racoon:2003-07-11:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F311F249-417C-4514-A144-E21A57078574"
          },
          {
            "criteria": "cpe:2.3:a:kame:racoon:2004-04-05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC1BA7DD-5218-41A0-9D5F-79A45D22A2A4"
          },
          {
            "criteria": "cpe:2.3:a:kame:racoon:2004-04-07b:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92E51298-8789-44B0-B64F-6D8D90034404"
          },
          {
            "criteria": "cpe:2.3:a:kame:racoon:2004-05-03:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "75ABB0EA-A057-486E-BD66-3378B28545BD"
          }
        ],
        "operator": "OR"
      }
    ]
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_servers:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "81B543F9-C209-46C2-B0AE-E14818A6992E"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC79FF22-2664-4C40-B0B3-6D23B5F45162"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DB89C970-DE94-4E09-A90A-077DB83AD156"
          },
          {
            "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AF3BBBC3-3EF9-4E24-9DE2-627E172A5473"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References