Openswan Crpyotgraphic Helper Use After Free Remote Denial Of Service Vulnerability

Openswan is prone to a remote denial-of-service vulnerability due to a use-after-free error.

An attacker may exploit this issue to crash the application, resulting in a denial-of-service condition.

Note: This issue occurs only when Openswan is configured with 'nhelpers=0'.

Openswan 2.3.0 to 2.6.36 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus