Vulnerability Description
Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Novell | Bordermanager | 3.8 |
References
- http://secunia.com/advisories/22699PatchVendor Advisory
- http://securitytracker.com/id?1017213
- http://www.attrition.org/pipermail/vim/2007-March/001410.html
- http://www.osvdb.org/30338Vendor Advisory
- http://www.securityfocus.com/bid/21014
- http://www.vupen.com/english/advisories/2006/4471
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30218
- https://secure-support.novell.com/KanisaPlatform/Publishing/201/3003139_f.SAL_Pu
- http://secunia.com/advisories/22699PatchVendor Advisory
- http://securitytracker.com/id?1017213
- http://www.attrition.org/pipermail/vim/2007-March/001410.html
- http://www.osvdb.org/30338Vendor Advisory
- http://www.securityfocus.com/bid/21014
- http://www.vupen.com/english/advisories/2006/4471
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30218
FAQ
What is CVE-2006-7155?
CVE-2006-7155 is a vulnerability with a CVSS score of 7.5 (HIGH). Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks...
How severe is CVE-2006-7155?
CVE-2006-7155 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-7155?
Check the references section above for vendor advisories and patch information. Affected products include: Novell Bordermanager.