Vulnerability Description
The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Redhat | Enterprise Linux | 4.0 |
References
- http://secunia.com/advisories/48045Broken Link
- http://www.ernw.de/download/pskattack.pdfExploit
- http://www.securitytracker.com/id?1019563Third Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=435274Issue Tracking
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41053VDB Entry
- http://secunia.com/advisories/48045Broken Link
- http://www.ernw.de/download/pskattack.pdfExploit
- http://www.securitytracker.com/id?1019563Third Party AdvisoryVDB Entry
- https://bugzilla.redhat.com/show_bug.cgi?id=435274Issue Tracking
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41053VDB Entry
FAQ
What is CVE-2008-1198?
CVE-2008-1198 is a vulnerability with a CVSS score of 7.1 (HIGH). The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute...
How severe is CVE-2008-1198?
CVE-2008-1198 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-1198?
Check the references section above for vendor advisories and patch information. Affected products include: Redhat Enterprise Linux.