VYPR
Unrated severityNVD Advisory· Published Mar 13, 2008· Updated Jun 16, 2026

CVE-2008-1335

CVE-2008-1335

Description

The ipsec4_get_ulp function in the kernel in NetBSD 2.0 through 3.1 and NetBSD-current before 20071028, when the fast_ipsec subsystem is enabled, allows remote attackers to bypass the IPsec policy by sending packets from a source machine with a different endianness than the destination machine, a different vulnerability than CVE-2006-0905.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

15
  • NetBSD/NetBSD13 versions
    cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*+ 12 more
    • cpe:2.3:o:netbsd:netbsd:2.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.3:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.0.4:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:2.1.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.0.2:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:*:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:rc1:*:*:*:*:*:*
    • cpe:2.3:o:netbsd:netbsd:3.1:rc3:*:*:*:*:*:*
  • cpe:2.3:o:netbsd:netbsd_current:*:*:*:*:*:*:*:*
    Range: <=20071027
  • NetBSD/kernelllm-fuzzy
    Range: <=3.1, <20071028

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.