OpenBSD ISAKMPD Kernel Heap Buffer Overflow Local Denial Of Service Vulnerability

It is reported that OpenBSD's IPSEC implementation is susceptible to a kernel heap buffer overflow local denial of service vulnerability. This issue is reportedly only exploitable by local users when isakmpd(8) is running.

This issue allows attackers with local interactive access on computers running isakmpd(8) to cause kernel crashes, denying service to legitimate users. It is reported that this issue doesn't likely allow privilege escalation or code execution.

It should be noted that isakmpd(8) is not configured to run by default.


Privacy Statement
Copyright 2010, SecurityFocus