CVE-2013-2053
09.07.2013, 17:55
Buffer overflow in the atodn function in Openswan before 2.6.39, when Opportunistic Encryption is enabled and an RSA key is being used, allows remote attackers to cause a denial of service (pluto IKE daemon crash) and possibly execute arbitrary code via crafted DNS TXT records. NOTE: this might be the same vulnerability as CVE-2013-2052 and CVE-2013-2054.Enginsight
| Vendor | Product | Version |
|---|---|---|
| xelerance | openswan | 𝑥 ≤ 2.6.38 |
| xelerance | openswan | 2.6.01 |
| xelerance | openswan | 2.6.02 |
| xelerance | openswan | 2.6.03 |
| xelerance | openswan | 2.6.04 |
| xelerance | openswan | 2.6.05 |
| xelerance | openswan | 2.6.06 |
| xelerance | openswan | 2.6.07 |
| xelerance | openswan | 2.6.08 |
| xelerance | openswan | 2.6.09 |
| xelerance | openswan | 2.6.10 |
| xelerance | openswan | 2.6.11 |
| xelerance | openswan | 2.6.12 |
| xelerance | openswan | 2.6.13 |
| xelerance | openswan | 2.6.14 |
| xelerance | openswan | 2.6.15 |
| xelerance | openswan | 2.6.16 |
| xelerance | openswan | 2.6.17 |
| xelerance | openswan | 2.6.18 |
| xelerance | openswan | 2.6.19 |
| xelerance | openswan | 2.6.20 |
| xelerance | openswan | 2.6.21 |
| xelerance | openswan | 2.6.22 |
| xelerance | openswan | 2.6.23 |
| xelerance | openswan | 2.6.24 |
| xelerance | openswan | 2.6.25 |
| xelerance | openswan | 2.6.26 |
| xelerance | openswan | 2.6.27 |
| xelerance | openswan | 2.6.28 |
| xelerance | openswan | 2.6.29 |
| xelerance | openswan | 2.6.30 |
| xelerance | openswan | 2.6.31 |
| xelerance | openswan | 2.6.32 |
| xelerance | openswan | 2.6.33 |
| xelerance | openswan | 2.6.34 |
| xelerance | openswan | 2.6.35 |
| xelerance | openswan | 2.6.36 |
| xelerance | openswan | 2.6.37 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Common Weakness Enumeration
References