Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1058

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-1058
Last Modified 04 Mar 2009 12:32:17
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-1058

Summary

Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote attackers to bypass XAUTH and move to Phase 2 negotiations.

Vulnerable Systems

Operating System

  • Cisco Ios 12.2t

  • Cisco Ios 12.3

  • Cisco Ios 12.3t


References

CISCO - 20050406 Vulnerabilities in the Internet Key Exchange Xauth Implementation


Last Updated: 27 May 2016 10:40:01