Monday, May 09, 2005

Vulnerability Issues with IPsec Configurations

The UK National Infrastructure Security Co-ordination Centre (NISCC) has issued an alert for IPSec implementations.

What is affected?
Potentially any configuration of IPsec that uses Encapsulating Security Payload (ESP) in tunnel mode with confidentiality only, or with integrity protection being provided by a higher layer protocol. Some configurations using AH to provide integrity protection are also vulnerable.

Impact
If exploited, it is possible for an active attacker to obtain the plaintext version of the IPsec- protected communications using only moderate effort.

Severity
This is rated as high.

0 Comments:

Post a Comment

<< Home