CVE-2013-2054

strongSwan 2.0.0-4.3.4 - Buffer Overflow via DNS TXT Record Parsing

Title source: llm
STIX 2.1

Description

Buffer overflow in the atodn function in strongSwan 2.0.0 through 4.3.4, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE daemon crash) and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be the same vulnerability as CVE-2013-2053 and CVE-2013-2054.

References (3)

Core 3
Core References
Various Sources mailing-list x_refsource_mlist
https://lists.libreswan.org/pipermail/swan-announce/2013/000003.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/59837

Scores

EPSS 0.0202
EPSS Percentile 78.6%

Details

CWE
CWE-119
Status published
Products (50)
strongswan/strongswan 2.0.0
strongswan/strongswan 2.0.1
strongswan/strongswan 2.0.2
strongswan/strongswan 2.1.0
strongswan/strongswan 2.1.1
strongswan/strongswan 2.1.2
strongswan/strongswan 2.1.3
strongswan/strongswan 2.1.4
strongswan/strongswan 2.1.5
strongswan/strongswan 2.3.0
... and 40 more
Published Jul 09, 2013
Tracked Since Feb 18, 2026