Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
KAME-derived implementations of IPsec on NetBSD 1.5.2, FreeBSD 4.5, and other operating systems, does not properly consult the Security Policy Database (SPD), which could cause a Security Gateway (SG) that does not use Encapsulating Security Payload (ESP) to forward forged IPv4 packets.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Kame的Stack Non-ESP IPV4转发包策略可绕过漏洞
Vulnerability Description
KAME是一款免费的开放源代码的IPv6和IPSec实现,由KAME项目组发行和维护。 KAME在IPv4的封装安全负载(Encapsulating Security Payload )实现上存在漏洞,可导致转发包策略可绕过。 在某些环境下,KAME没有使用RFC相关协议而自己建立了一套安全实现环境,当IPv4网络在一系统和使用非封装安全负载(ESP)通信阻塞,在安全网关的路由末端之间使用封装安全负载(ESP)时,发送给安全网关的非封装安全负载(ESP)通信会被安全网关转发。这可以允许任意访问网络的攻击者
CVSS Information
N/A
Vulnerability Type
N/A