Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3733

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3733
Last Modified 07 Mar 2011 09:27:02
Published 21 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3733

Summary

The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers before 7-1-0, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

Vulnerable Systems

Operating System

  • Juniper Junos E 7.0.0

  • Juniper Junos J 6.3

  • Juniper Junos M 6.3

  • Juniper Junos T 6.3

  • Juniper Junose E 7.0.0

  • Juniper Junose J 6.3

  • Juniper Junose M 6.3.0

  • Juniper Junose T 6.3


References

CERT-VN - VU#226364

VUPEN - ADV-2005-2410

BID - 15402

MISC - http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en

MISC - http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/

SECTRACK - 1015203

SECUNIA - 17568

MISC - http://jvn.jp/niscc/NISCC-273756/index.html


Last Updated: 27 May 2016 10:41:02