2
Candidate: CVE-2008-1198
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1198
6
The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5
7
configures racoon to use aggressive IKE mode instead of main IKE mode,
8
which makes it easier for remote attackers to conduct brute force attacks
9
by sniffing an unencrypted preshared key (PSK) hash.
12
jdstrand> not affected on Ubuntu as racoon.conf does not ship with this and
13
has in its commented out section 'exchange_mode main,aggressive'
19
upstream_ipsec-tools: needs-triage
20
dapper_ipsec-tools: not-affected
21
edgy_ipsec-tools: not-affected
22
feisty_ipsec-tools: not-affected
23
gutsy_ipsec-tools: not-affected
24
devel_ipsec-tools: not-affected