CVE-2004-0607 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2004-0607
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2004-0607

Description: The eay_check_x509cert function in KAME Racoon successfully verifies certificates even when OpenSSL validation fails, which could allow remote attackers to bypass authentication.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/16414 ST 1010495 SCO SAID Secunia Advisory: SA11877 Secunia Advisory: SA11863 REDHAT http://www.redhat.com/support/errata/RHSA-2004-308.html OSVDB 7113 GENTOO http://security.gentoo.org/glsa/glsa-200406-17.xml CONFIRM http://sourceforge.net/project/shownotes.php?release_id=245982 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=108731967126033&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=108726102304507&w=2 BID 10546

Return to the previous page.