CVE-2010-2628
strongSwan 4.3.x < 4.3.7 and 4.4.x < 4.4.1 - Remote Code Execution via Crafted Certificate or Identity Data
Title source: llmDescription
The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted (1) certificate or (2) identity data that triggers buffer overflows.
References (14)
Core 14
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2086
Mailing List mailing-list
x_refsource_mlist
http://lists.opensuse.org/opensuse-updates/2010-08/msg00026.html
Patch, Vendor Advisory mailing-list
x_refsource_mlist
https://lists.strongswan.org/pipermail/users/2010-August/005167.html
Patch x_refsource_confirm
http://download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.4_snprintf.patch
Patch, Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2085
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1024338
Patch x_refsource_confirm
http://download.strongswan.org/patches/08_snprintf_patch/strongswan-4.4.0_snprintf.patch
Patch x_refsource_confirm
http://download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.6_snprintf.patch
Patch x_refsource_confirm
http://download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.3_snprintf.patch
Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/40956
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/42444
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/615915
Third Party Advisory x_refsource_confirm
http://trac.strongswan.org/projects/strongswan/wiki/441
Patch x_refsource_confirm
http://download.strongswan.org/patches/08_snprintf_patch/strongswan-4.3.5_snprintf.patch
Scores
EPSS
0.0405
EPSS Percentile
89.4%
Details
CWE
CWE-94
Status
published
Products (8)
strongswan/strongswan
4.3.0
strongswan/strongswan
4.3.1
strongswan/strongswan
4.3.2
strongswan/strongswan
4.3.3
strongswan/strongswan
4.3.4
strongswan/strongswan
4.3.5
strongswan/strongswan
4.3.6
strongswan/strongswan
4.4.0
Published
Aug 20, 2010
Tracked Since
Feb 18, 2026