IPSec in Mac OS X before 10.2.6 does not properly handle certain incoming security policies that match by port, which could allow traffic that is not explicitly allowed by the policies.Referenceshttp://securitytracker.com/id?1006796http://www.kb.cert.org/vuls/id/869548http://secunia.com/advisories/8798https://exchange.xforce.ibmcloud.com/vulnerabilities/12027http://www.securityfocus.com/bid/7628http://docs.info.apple.com/article.html?artnum=61798
