ID CVE-2005-3666
Summary Multiple unspecified format string vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable.
References
Vulnerable Configurations
  • cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*
    cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*
CVSS
Base: 10.0 (as of 05-09-2008 - 20:54)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:L/Au:N/C:C/I:C/A:C
refmap via4
cert-vn VU#226364
misc
Last major update 05-09-2008 - 20:54
Published 18-11-2005 - 21:03
Last modified 05-09-2008 - 20:54
Back to Top