CVE-2010-2628

strongSwan 4.3.x < 4.3.7 and 4.4.x < 4.4.1 - Remote Code Execution via Crafted Certificate or Identity Data

Title source: llm
STIX 2.1

Description

The IKE daemon in strongSwan 4.3.x before 4.3.7 and 4.4.x before 4.4.1 does not properly check the return values of snprintf calls, which allows remote attackers to execute arbitrary code via crafted (1) certificate or (2) identity data that triggers buffer overflows.

References (14)

Core 14
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2086
Mailing List mailing-list x_refsource_mlist
http://lists.opensuse.org/opensuse-updates/2010-08/msg00026.html
Patch, Vendor Advisory mailing-list x_refsource_mlist
https://lists.strongswan.org/pipermail/users/2010-August/005167.html
Patch, Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2010/2085
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1024338
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/40956
Patch vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/42444
Issue Tracking x_refsource_confirm
https://bugzilla.novell.com/615915
Third Party Advisory x_refsource_confirm
http://trac.strongswan.org/projects/strongswan/wiki/441

Scores

EPSS 0.0405
EPSS Percentile 89.4%

Details

CWE
CWE-94
Status published
Products (8)
strongswan/strongswan 4.3.0
strongswan/strongswan 4.3.1
strongswan/strongswan 4.3.2
strongswan/strongswan 4.3.3
strongswan/strongswan 4.3.4
strongswan/strongswan 4.3.5
strongswan/strongswan 4.3.6
strongswan/strongswan 4.4.0
Published Aug 20, 2010
Tracked Since Feb 18, 2026