Back to search
CVE-2002-0414
Published: Apr 2, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consult the Security Policy Database (SPD), which could cause a Security Gateway (SG) that does not use Encapsulating Security Payload (ESP) to forward forged IPv4 packets.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
4224
vdb-entry
x_refsource_BID
20020304 [VulnWatch] BSD: IPv4 forwarding doesn't consult inbound SPD in KAME-derived IPsec
mailing-list
x_refsource_VULNWATCH
5304
vdb-entry
x_refsource_OSVDB
http://orange.kame.net/dev/cvsweb.cgi/kame/CHANGELOG
x_refsource_CONFIRM
20020304 BSD: IPv4 forwarding doesn't consult inbound SPD in KAME-derived IPsec
mailing-list
x_refsource_BUGTRAQ
kame-forged-packet-forwarding(8416)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now