OpenBSD ISAKMPD IPsec Replay Vulnerability

OpenBSD's IPsec implementation is prone to remote replay attacks. This issue is due to the improper implementation of its replay window.

This issue allows remote attackers to replay IPsec traffic. The exact consequences of successful attacks depend on the nature of the traffic being replayed. This will likely affect only higher-level protocols such as UDP, since they don't provide their own anti-replay features.


Privacy Statement
Copyright 2010, SecurityFocus