Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3666

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2005-3666
Last Modified 05 Sep 2008 04:54:58
Published 18 Nov 2005 04:03:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3666

Summary

Multiple unspecified format string vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable.

Vulnerable Systems

Application

  • Internet Key Exchange 1


References

CERT-VN - VU#226364

MISC - http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en

MISC - http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/

MISC - http://jvn.jp/niscc/NISCC-273756/index.html


Last Updated: 27 May 2016 10:41:00