What is the severity of CVE-2006-7155?

CVE-2006-7155 is classified as a medium severity vulnerability due to its potential for denial of service and replay attacks.

How do I fix CVE-2006-7155?

To mitigate CVE-2006-7155, apply patches or updates provided by Novell for BorderManager 3.8 SP4.

What type of attacks can be executed due to CVE-2006-7155?

CVE-2006-7155 can allow attackers to perform denial of service attacks and replay attacks due to predictable ISAKMP cookies.

Is CVE-2006-7155 specific to Novell BorderManager?

Yes, CVE-2006-7155 specifically affects Novell BorderManager version 3.8 SP4.

What does ISAKMP stand for in relation to CVE-2006-7155?

ISAKMP stands for Internet Security Association and Key Management Protocol, which is involved in secure communication for network protocols.

Vulnerability/
CVE-2006-7155

high

7.5

CWE

NVD-CWE-Other

7/3/2007

29/7/2017

CVE-2006-7155

First published: Wed Mar 07 2007(Updated: )

Novell BorderManager 3.8 SP4 generates the same ISAKMP cookies for the same source IP and port number during the same day, which allows remote attackers to conduct denial of service and replay attacks. NOTE: this issue might be related to CVE-2006-5286.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Novell BorderManager	=3.8-sp4

Remedy

http://secunia.com/advisories/22699

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-7155?
CVE-2006-7155 is classified as a medium severity vulnerability due to its potential for denial of service and replay attacks.
How do I fix CVE-2006-7155?
To mitigate CVE-2006-7155, apply patches or updates provided by Novell for BorderManager 3.8 SP4.
What type of attacks can be executed due to CVE-2006-7155?
CVE-2006-7155 can allow attackers to perform denial of service attacks and replay attacks due to predictable ISAKMP cookies.
Is CVE-2006-7155 specific to Novell BorderManager?
Yes, CVE-2006-7155 specifically affects Novell BorderManager version 3.8 SP4.
What does ISAKMP stand for in relation to CVE-2006-7155?
ISAKMP stands for Internet Security Association and Key Management Protocol, which is involved in secure communication for network protocols.

agent/author
agent/description
agent/event
agent/first-publish-date
agent/last-modified-date
agent/references
agent/remedy
agent/severity
agent/softwarecombine
agent/tags
agent/type
agent/weakness
collector/nvd-historical
collector/nvd-index
vendor/novell
canonical/novell bordermanager
version/novell bordermanager/3.8-sp4

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.