VYPR
Unrated severityNVD Advisory· Published Jun 1, 2004· Updated Jun 16, 2026

CVE-2004-0155

CVE-2004-0155

Description

The KAME IKE Daemon Racoon, when authenticating a peer during Phase 1, validates the X.509 certificate but does not verify the RSA signature authentication, which allows remote attackers to establish unauthorized IP connections or conduct man-in-the-middle attacks using a valid, trusted X.509 certificate.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Kame/Racoon2 versions
    cpe:2.3:a:kame:racoon:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:kame:racoon:*:*:*:*:*:*:*:*
    • (no CPE)

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.