CVE-2008-1198

Publication date 6 March 2008

Last updated 24 July 2024

The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
ipsec-tools	7.10 gutsy	Not affected
	7.04 feisty	Not affected
	6.10 edgy	Not affected
	6.06 LTS dapper	Not affected

How can I get the fixes?
What do statuses mean?

Notes

jdstrand

not affected on Ubuntu as racoon.conf does not ship with this and has in its commented out section 'exchange_mode main,aggressive'

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2008-1198