{"document":{"aggregate_severity":{"namespace":"https://www.suse.com/support/security/rating/","text":"low"},"category":"csaf_vex","csaf_version":"2.0","distribution":{"text":"Copyright 2024 SUSE LLC. All rights reserved.","tlp":{"label":"WHITE","url":"https://www.first.org/tlp/"}},"lang":"en","notes":[{"category":"summary","text":"SUSE CVE-2008-1198","title":"Title"},{"category":"description","text":"The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.","title":"Description of the CVE"},{"category":"legal_disclaimer","text":"CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).","title":"Terms of use"}],"publisher":{"category":"vendor","contact_details":"https://www.suse.com/support/security/contact/","name":"SUSE Product Security Team","namespace":"https://www.suse.com/"},"references":[{"category":"external","summary":"CVE-2008-1198","url":"https://www.suse.com/security/cve/CVE-2008-1198"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 748035 for CVE-2008-1198","url":"https://bugzilla.suse.com/748035"}],"title":"SUSE CVE CVE-2008-1198","tracking":{"current_release_date":"2025-10-08T01:47:46Z","generator":{"date":"2023-02-15T06:09:00Z","engine":{"name":"cve-database.git:bin/generate-csaf-vex.pl","version":"1"}},"id":"CVE-2008-1198","initial_release_date":"2023-02-15T06:09:00Z","revision_history":[{"date":"2023-02-15T06:09:00Z","number":"2","summary":"Current version"},{"date":"2024-04-24T03:47:09Z","number":"3","summary":"Current version"},{"date":"2025-03-17T03:04:17Z","number":"4","summary":"Current version"},{"date":"2025-04-25T14:32:48Z","number":"5","summary":"Current version"},{"date":"2025-10-08T01:47:46Z","number":"6","summary":"Current version"}],"status":"interim","version":"6"}},"product_tree":{"branches":[{"branches":[{"branches":[{"category":"product_name","name":"SUSE Linux Enterprise Server 12 SP5","product":{"name":"SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product":{"name":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sles_sap:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Software Development Kit 12 SP5","product":{"name":"SUSE Linux Enterprise Software Development Kit 12 SP5","product_id":"SUSE Linux Enterprise Software Development Kit 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sle-sdk:12:sp5"}}},{"category":"product_name","name":"SUSE Linux Enterprise Workstation Extension 12 SP5","product":{"name":"SUSE Linux Enterprise Workstation Extension 12 SP5","product_id":"SUSE Linux Enterprise Workstation Extension 12 SP5","product_identification_helper":{"cpe":"cpe:/o:suse:sle-we:12:sp5"}}},{"category":"product_version","name":"novell-ipsec-tools","product":{"name":"novell-ipsec-tools","product_id":"novell-ipsec-tools","product_identification_helper":{"purl":"pkg:rpm/suse/novell-ipsec-tools@?upstream=novell-ipsec-tools.src.rpm"}}},{"category":"product_version","name":"novell-ipsec-tools-devel","product":{"name":"novell-ipsec-tools-devel","product_id":"novell-ipsec-tools-devel","product_identification_helper":{"purl":"pkg:rpm/suse/novell-ipsec-tools-devel@?upstream=novell-ipsec-tools.src.rpm"}}}],"category":"product_family","name":"SUSE Linux Enterprise"}],"category":"vendor","name":"SUSE"}],"relationships":[{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:novell-ipsec-tools"},"product_reference":"novell-ipsec-tools","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools-devel as component of SUSE Linux Enterprise Server 12 SP5","product_id":"SUSE Linux Enterprise Server 12 SP5:novell-ipsec-tools-devel"},"product_reference":"novell-ipsec-tools-devel","relates_to_product_reference":"SUSE Linux Enterprise Server 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5:novell-ipsec-tools"},"product_reference":"novell-ipsec-tools","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools-devel as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5","product_id":"SUSE Linux Enterprise Server for SAP Applications 12 SP5:novell-ipsec-tools-devel"},"product_reference":"novell-ipsec-tools-devel","relates_to_product_reference":"SUSE Linux Enterprise Server for SAP Applications 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools as component of SUSE Linux Enterprise Software Development Kit 12 SP5","product_id":"SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools"},"product_reference":"novell-ipsec-tools","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools-devel as component of SUSE Linux Enterprise Software Development Kit 12 SP5","product_id":"SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools-devel"},"product_reference":"novell-ipsec-tools-devel","relates_to_product_reference":"SUSE Linux Enterprise Software Development Kit 12 SP5"},{"category":"default_component_of","full_product_name":{"name":"novell-ipsec-tools as component of SUSE Linux Enterprise Workstation Extension 12 SP5","product_id":"SUSE Linux Enterprise Workstation Extension 12 SP5:novell-ipsec-tools"},"product_reference":"novell-ipsec-tools","relates_to_product_reference":"SUSE Linux Enterprise Workstation Extension 12 SP5"}]},"vulnerabilities":[{"cve":"CVE-2008-1198","ids":[{"system_name":"SUSE CVE Page","text":"https://www.suse.com/security/cve/CVE-2008-1198"}],"notes":[{"category":"general","text":"The default IPSec ifup script in Red Hat Enterprise Linux 3 through 5 configures racoon to use aggressive IKE mode instead of main IKE mode, which makes it easier for remote attackers to conduct brute force attacks by sniffing an unencrypted preshared key (PSK) hash.","title":"CVE description"}],"product_status":{"known_not_affected":["SUSE Linux Enterprise Server 12 SP5:novell-ipsec-tools","SUSE Linux Enterprise Server 12 SP5:novell-ipsec-tools-devel","SUSE Linux Enterprise Server for SAP Applications 12 SP5:novell-ipsec-tools","SUSE Linux Enterprise Server for SAP Applications 12 SP5:novell-ipsec-tools-devel","SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools","SUSE Linux Enterprise Software Development Kit 12 SP5:novell-ipsec-tools-devel","SUSE Linux Enterprise Workstation Extension 12 SP5:novell-ipsec-tools"]},"references":[{"category":"external","summary":"CVE-2008-1198","url":"https://www.suse.com/security/cve/CVE-2008-1198"},{"category":"external","summary":"SUSE Security Ratings","url":"https://www.suse.com/support/security/rating/"},{"category":"external","summary":"SUSE Bug 748035 for CVE-2008-1198","url":"https://bugzilla.suse.com/748035"}],"threats":[{"category":"impact","date":"2013-06-28T01:10:59Z","details":"low"}],"title":"CVE-2008-1198"}]}