What is CVE-2004-0607?

CVE-2004-0607 is a vulnerability in Ipsec-tools. Published 2004-12-06.

Is CVE-2004-0607 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Ipsec-tools

CVE-2004-0607

The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.

EPSS: 0.054 (91.7th percentile) — read the EPSS interpretation.

Affected products

Ipsec-tools — versions 0.3, 0.3.1, 0.3.2
Kame Racoon — versions 2003-07-11, 2004-04-05, 2004-04-07b
Redhat Enterprise_linux — versions 3.0
Redhat Enterprise_linux_desktop — versions 3.0
N/a — versions n/a

Public proof-of-concept exploits

References

cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (x_refsource_CONFIRM)
cve@mitre.org (x_refsource_OSVDB, vdb-entry)
cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, x_refsource_XF)
cve@mitre.org (x_refsource_REDHAT, vendor-advisory)
cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2004-0607?: CVE-2004-0607 is a vulnerability in Ipsec-tools. Published 2004-12-06.
Is CVE-2004-0607 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.