KAME Racoon "Authentication" SA Deletion Vulnerability

KAME Racoon "Authentication" SA Deletion Vulnerability

Reportedly, attackers may be able to remotely delete security associations (SAs) in hosts running the KAME IKE daemon, Racoon. The issue presents itself when Racoon receives a delete message containing the initiator cookie of a main/aggressive/base mode that has not yet set up an ISAKMP security association.