CVE-2008-1335
NetBSD 2.0-3.1 and NetBSD-current < 20071027 - IPsec Policy Bypass via Endianness Mismatch
Title source: llmDescription
The ipsec4_get_ulp function in the kernel in NetBSD 2.0 through 3.1 and NetBSD-current before 20071028, when the fast_ipsec subsystem is enabled, allows remote attackers to bypass the IPsec policy by sending packets from a source machine with a different endianness than the destination machine, a different vulnerability than CVE-2006-0905.
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1019533
Vendor Advisory vendor-advisory
x_refsource_netbsd
ftp://ftp.NetBSD.org/pub/NetBSD/security/advisories/NetBSD-SA2008-002.txt.asc
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/29180
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/28045
Scores
EPSS
0.0030
EPSS Percentile
53.6%
Details
Status
published
Products (12)
netbsd/netbsd
2.0
netbsd/netbsd
2.0.1
netbsd/netbsd
2.0.2
netbsd/netbsd
2.0.3
netbsd/netbsd
2.0.4
netbsd/netbsd
2.1
netbsd/netbsd
2.1.1
netbsd/netbsd
3.0
netbsd/netbsd
3.0.1
netbsd/netbsd
3.0.2
... and 2 more
Published
Mar 13, 2008
Tracked Since
Feb 18, 2026