VULHUB ™

When isakmpd receives an INVALID-SPI notification, it will delete the SA associated with the specified SPI. All associated SAs will be deleted as well. This occurs only when the notification originates from the correct IP address. Exploitation of this vulnerability may result in a disruption of service. There may be more serious ramifications, as the IPSec policies are also reportedly deleted in most cases.

When isakmpd receives an INVALID-SPI notification, it will delete the SA associated with the specified SPI. All associated SAs will be deleted as well. This occurs only when the notification originates from the correct IP address. Exploitation of this vulnerability may result in a disruption of service. There may be more serious ramifications, as the IPSec policies are also reportedly deleted in most cases.