Vulnerability CVE-2007-3157


Published: 2007-06-11   Modified: 2012-02-12

Description:
IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service (infinite loop and system hang) via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec.

See advisories in our WLB2 database:
Topic
Author
Date
Low
SafeNET High Assurance Remote/SoftRemote (IPSecDrv.sys) remote DoS
mu-b
17.06.2007

Vendor: Safenet
Product: Safenet highassurance remote 
Version: 1.4.0_build_12;
Product: Softremote vpn client 
Version: 1.4;

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial

 References:
http://xforce.iss.net/xforce/xfdb/34775
http://www.securityfocus.com/bid/24385
http://www.digit-labs.org/files/exploits/safenet-dos.c
http://osvdb.org/37137
http://lists.grok.org.uk/pipermail/full-disclosure/2007-June/063859.html
http://securityreason.com/securityalert/2803
http://secunia.com/advisories/25574

Related CVE
CVE-2008-0760
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.4.1.0 and earlier, and Sentinel Keys Server 1.0.4.0 and earlier, allows remote attackers to read arbitrary files via a ..\ (dot dot backslash) in the URI. NOTE: this issue rep...
CVE-2008-0573
IPSecDrv.sys 10.4.0.12 in SafeNET HighAssurance Remote and SoftRemote allows local users to gain privileges via a crafted IPSECDRV_IOCTL IOCTL request.
CVE-2007-6483
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot...
CVE-2005-0353
Buffer overflow in the Sentinel LM (Lservnt) service in the Sentinel License Manager 7.2.0.2 allows remote attackers to execute arbitrary code by sending a large amount of data to UDP port 5093.
CVE-2005-0346
SafeNet SoftRemote VPN Client stores the VPN password (pre-shared key) in cleartext in memory of the IreIKE.exe process, which allows local users to gain sensitive information if they have access to that process.
CVE-2002-2225
SafeNet VPN client allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets, possibly involving buffer overflows using (1) a large Security Parameter Index (SPI)...

Copyright 2019, cxsecurity.com

 

Back to Top