CVE-2010-3302

Buffer overflow in programs/pluto/xauth.c in the client in Openswan 2.6.25 through 2.6.28 might allow remote authenticated gateways to execute arbitrary code or cause a denial of service via long (1) cisco_dns_info or (2) cisco_domain_info data in a packet.

Date published : 2010-10-05

http://www.securityfocus.com/bid/43588

http://www.openswan.org/download/CVE-2010-3302/CVE-2010-3302.txt