CVE-2008-1198 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2008-1198 Interim 1 10 2024-05-08T01:51:31Z current 2021-05-30T12:41:59Z 2024-05-08T01:51:31Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2008-1198 The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP5 SUSE Linux Enterprise Software Development Kit 12 SP5 SUSE Linux Enterprise Workstation Extension 12 SP5 novell-ipsec-tools novell-ipsec-tools-devel novell-ipsec-tools as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 novell-ipsec-tools-devel as a component of SUSE Linux Enterprise Software Development Kit 12 SP5 novell-ipsec-tools as a component of SUSE Linux Enterprise Workstation Extension 12 SP5 The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash. CVE-2008-1198 SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools-devel SUSE Linux Enterprise Workstation Extension 12 SP5:novell-ipsec-tools low 2.6 AV:N/AC:H/Au:N/C:P/I:N/A:N