ID CVE-2005-3668
Summary Multiple buffer overflows in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable.
References
Vulnerable Configurations
  • cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*
    cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 05-09-2008 - 20:54)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
refmap via4
cert-vn VU#226364
misc
Last major update 05-09-2008 - 20:54
Published 18-11-2005 - 21:03
Last modified 05-09-2008 - 20:54
Back to Top