cvelistv5 - cve-2005-3671

CVE-2005-3671 (GCVE-0-2005-3671)

Vulnerability from cvelistv5 – Published: 2005-11-18 21:00 – Updated: 2024-08-07 23:17

Summary

The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.niscc.gov.uk/niscc/docs/re-20051114-01…	x_refsource_MISC
	http://www.securityfocus.com/bid/15416	vdb-entryx_refsource_BID
	http://www.redhat.com/archives/fedora-announce-li…	vendor-advisoryx_refsource_FEDORA
	http://securitytracker.com/id?1015214	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/17581	third-party-advisoryx_refsource_SECUNIA
	http://archives.neohapsis.com/archives/bugtraq/20…	mailing-listx_refsource_BUGTRAQ
	http://jvn.jp/niscc/NISCC-273756/index.html	x_refsource_MISC
	http://archives.neohapsis.com/archives/bugtraq/20…	mailing-listx_refsource_BUGTRAQ
	http://www.gentoo.org/security/en/glsa/glsa-20051…	vendor-advisoryx_refsource_GENTOO
	http://www.ee.oulu.fi/research/ouspg/protos/testi…	x_refsource_MISC
	http://www.kb.cert.org/vuls/id/226364	third-party-advisoryx_refsource_CERT-VN
	http://secunia.com/advisories/18115	third-party-advisoryx_refsource_SECUNIA
	http://secunia.com/advisories/17680	third-party-advisoryx_refsource_SECUNIA
	http://www.redhat.com/archives/fedora-announce-li…	vendor-advisoryx_refsource_FEDORA
	http://www.openswan.org/niscc2/	x_refsource_CONFIRM
	http://secunia.com/advisories/17980	third-party-advisoryx_refsource_SECUNIA
	http://www.novell.com/linux/security/advisories/2…	vendor-advisoryx_refsource_SUSE

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T23:17:23.402Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "name": "15416",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/15416"
          },
          {
            "name": "FEDORA-2005-1093",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
          },
          {
            "name": "1015214",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015214"
          },
          {
            "name": "17581",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/17581"
          },
          {
            "name": "20051214 Re:  [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
          },
          {
            "name": "20051213 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
          },
          {
            "name": "GLSA-200512-04",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "name": "VU#226364",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "name": "18115",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/18115"
          },
          {
            "name": "17680",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/17680"
          },
          {
            "name": "FEDORA-2005-1092",
            "tags": [
              "vendor-advisory",
              "x_refsource_FEDORA",
              "x_transferred"
            ],
            "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.openswan.org/niscc2/"
          },
          {
            "name": "17980",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/17980"
          },
          {
            "name": "SUSE-SA:2005:070",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2005-11-17T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2005-11-24T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
        },
        {
          "name": "15416",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/15416"
        },
        {
          "name": "FEDORA-2005-1093",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
        },
        {
          "name": "1015214",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015214"
        },
        {
          "name": "17581",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/17581"
        },
        {
          "name": "20051214 Re:  [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
        },
        {
          "name": "20051213 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
        },
        {
          "name": "GLSA-200512-04",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
        },
        {
          "name": "VU#226364",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/226364"
        },
        {
          "name": "18115",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/18115"
        },
        {
          "name": "17680",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/17680"
        },
        {
          "name": "FEDORA-2005-1092",
          "tags": [
            "vendor-advisory",
            "x_refsource_FEDORA"
          ],
          "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.openswan.org/niscc2/"
        },
        {
          "name": "17980",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/17980"
        },
        {
          "name": "SUSE-SA:2005:070",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2005-3671",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en",
              "refsource": "MISC",
              "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
            },
            {
              "name": "15416",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/15416"
            },
            {
              "name": "FEDORA-2005-1093",
              "refsource": "FEDORA",
              "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
            },
            {
              "name": "1015214",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015214"
            },
            {
              "name": "17581",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/17581"
            },
            {
              "name": "20051214 Re:  [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
            },
            {
              "name": "http://jvn.jp/niscc/NISCC-273756/index.html",
              "refsource": "MISC",
              "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
            },
            {
              "name": "20051213 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
            },
            {
              "name": "GLSA-200512-04",
              "refsource": "GENTOO",
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
            },
            {
              "name": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/",
              "refsource": "MISC",
              "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
            },
            {
              "name": "VU#226364",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/226364"
            },
            {
              "name": "18115",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/18115"
            },
            {
              "name": "17680",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/17680"
            },
            {
              "name": "FEDORA-2005-1092",
              "refsource": "FEDORA",
              "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
            },
            {
              "name": "http://www.openswan.org/niscc2/",
              "refsource": "CONFIRM",
              "url": "http://www.openswan.org/niscc2/"
            },
            {
              "name": "17980",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/17980"
            },
            {
              "name": "SUSE-SA:2005:070",
              "refsource": "SUSE",
              "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2005-3671",
    "datePublished": "2005-11-18T21:00:00",
    "dateReserved": "2005-11-18T00:00:00",
    "dateUpdated": "2024-08-07T23:17:23.402Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:frees_wan:frees_wan:2.04:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68C84C1F-2804-4E5F-B34E-D75530CD5A71\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A9EABDE-514F-42BA-A335-135209605981\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2425AF51-C42B-4EAA-A619-EE47EAFCBA83\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"892D939B-4649-4B90-A2C0-6C2E4DDF7DFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.1.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1A321B57-5E08-48C8-9288-A92342770FD1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.1.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54780B50-9CFE-43B6-8BB9-C7246F817773\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"001E2700-CE33-495A-8F8A-81E2E550CFF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openswan:openswan:2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6A628FE6-A042-4DF9-A141-8BE65FD236C5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:xelerance:openswan:2.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F7841F42-1226-43C4-A007-88847925D872\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.\"}]",
      "id": "CVE-2005-3671",
      "lastModified": "2024-11-21T00:02:24.197",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2005-11-18T21:03:00.000",
      "references": "[{\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://jvn.jp/niscc/NISCC-273756/index.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/17581\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/17680\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/17980\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/18115\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1015214\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/226364\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2005_70_ipsec.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.openswan.org/niscc2/\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/15416\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://jvn.jp/niscc/NISCC-273756/index.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/17581\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/17680\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/17980\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/18115\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1015214\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/226364\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.novell.com/linux/security/advisories/2005_70_ipsec.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.openswan.org/niscc2/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/15416\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2005-3671\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2005-11-18T21:03:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:frees_wan:frees_wan:2.04:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68C84C1F-2804-4E5F-B34E-D75530CD5A71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A9EABDE-514F-42BA-A335-135209605981\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2425AF51-C42B-4EAA-A619-EE47EAFCBA83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"892D939B-4649-4B90-A2C0-6C2E4DDF7DFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A321B57-5E08-48C8-9288-A92342770FD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.1.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54780B50-9CFE-43B6-8BB9-C7246F817773\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"001E2700-CE33-495A-8F8A-81E2E550CFF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openswan:openswan:2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6A628FE6-A042-4DF9-A141-8BE65FD236C5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:xelerance:openswan:2.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7841F42-1226-43C4-A007-88847925D872\"}]}]}],\"references\":[{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://jvn.jp/niscc/NISCC-273756/index.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/17581\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/17680\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/17980\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/18115\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1015214\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/226364\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2005_70_ipsec.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.openswan.org/niscc2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/15416\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://jvn.jp/niscc/NISCC-273756/index.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17581\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17680\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/17980\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/18115\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1015214\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/226364\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.novell.com/linux/security/advisories/2005_70_ipsec.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openswan.org/niscc2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/15416\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]}]}}"
  }
}

GHSA-RV79-RV3W-MQQC

Vulnerability from github – Published: 2022-05-01 02:20 – Updated: 2025-04-03 04:19

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2005-3671"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2005-11-18T21:03:00Z",
    "severity": "HIGH"
  },
  "details": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.",
  "id": "GHSA-rv79-rv3w-mqqc",
  "modified": "2025-04-03T04:19:59Z",
  "published": "2022-05-01T02:20:03Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2005-3671"
    },
    {
      "type": "WEB",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
    },
    {
      "type": "WEB",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
    },
    {
      "type": "WEB",
      "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17581"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17680"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/17980"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/18115"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1015214"
    },
    {
      "type": "WEB",
      "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
    },
    {
      "type": "WEB",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/226364"
    },
    {
      "type": "WEB",
      "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
    },
    {
      "type": "WEB",
      "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
    },
    {
      "type": "WEB",
      "url": "http://www.openswan.org/niscc2"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/15416"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2005-AVI-458

Vulnerability from certfr_avis - Published: - Updated:

Un utilisateur mal intentionné peut envoyer des paquets volontairement mal formés au service IKE pour provoquer son arrêt et empêcher ainsi l'établissement de toute nouvelle connexion.

Description

Openswan est une solution IPsec pour système d'exploitation Linux.

Une faille dans le gestionnaire IKE des associations de sécurité peut être exploitée pour provoquer un déni de service. Par ailleurs, un problème lié à la négociation du chiffrement 3DES est également corrigé.

Solution

Mettre à jour les sources en version 2.4.4 au moins, ou se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Tout système Linux utilisant Openswan dans une version 2 antérieure à la 2.4.4.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Avis de sécurité 273756/NISCC/ISAKMP de l'UNIRAS	None	vendor-advisory
Avis de sécurité Openswan du 14 novembre 2005 :	-	other
Avis de sécurité de l'UNIRAS 273756/NISCC/ISAKMP du 14 novembre 2005 :	-	other
Note de vulnérabilité #226364 de l'US-CERT :	-	other
Mise à jour de sécurité Fedora Core 4 FEDORA-2005-1093 du 21 novembre 2005 :	-	other
Mise à jour de sécurité Fedora Core 3 FEDORA-2005-1092 du 21 novembre 2005 :	-	other
Bulletin de sécurité Gentoo GLSA 200512-04 du 12 décembre 2005 :	-	other
Site internet d'Openswan :	-	other
Bulletin de sécurité SUSE SuSE-SA:2005:070 du 20 décembre 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eTout syst\u00e8me Linux utilisant \u003cTT\u003eOpenswan\u003c/TT\u003e dans une  version 2 ant\u00e9rieure \u00e0 la 2.4.4.\u003c/P\u003e",
  "content": "## Description\n\nOpenswan est une solution IPsec pour syst\u00e8me d\u0027exploitation Linux.\n\nUne faille dans le gestionnaire IKE des associations de s\u00e9curit\u00e9 peut\n\u00eatre exploit\u00e9e pour provoquer un d\u00e9ni de service. Par ailleurs, un\nprobl\u00e8me li\u00e9 \u00e0 la n\u00e9gociation du chiffrement 3DES est \u00e9galement corrig\u00e9.\n\n## Solution\n\nMettre \u00e0 jour les sources en version 2.4.4 au moins, ou se r\u00e9f\u00e9rer au\nbulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf.\nsection Documentation).\n",
  "cves": [
    {
      "name": "CVE-2005-3671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3671"
    }
  ],
  "links": [
    {
      "title": "Avis de s\u00e9curit\u00e9 Openswan du 14 novembre 2005 :",
      "url": "http://www.openswan.org/niscc2/"
    },
    {
      "title": "Avis de s\u00e9curit\u00e9 de l\u0027UNIRAS 273756/NISCC/ISAKMP du 14    novembre 2005 :",
      "url": "http://www.uniras.gov.uk/niscc/docs/br-20051114-01013.html"
    },
    {
      "title": "Note de vuln\u00e9rabilit\u00e9 #226364 de l\u0027US-CERT :",
      "url": "http://www.kb.cert.org/vuls/id/226364"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 4 FEDORA-2005-1093 du    21 novembre 2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 3 FEDORA-2005-1092 du    21 novembre 2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200512-04 du 12 d\u00e9cembre    2005 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
    },
    {
      "title": "Site internet d\u0027Openswan :",
      "url": "http://www.openswan.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:070 du 20 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
    }
  ],
  "reference": "CERTA-2005-AVI-458",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2005-11-16T00:00:00.000000"
    },
    {
      "description": "ajout des bulletins de s\u00e9curit\u00e9 Gentoo, Fedora Core 3 et 4, de la r\u00e9f\u00e9rence CVE, de la note de vuln\u00e9rabilit\u00e9 US-CERT et correction du num\u00e9ro de version des sources vuln\u00e9rables ;",
      "revision_date": "2005-12-20T00:00:00.000000"
    },
    {
      "description": "ajout du bulletin de s\u00e9curit\u00e9 SuSE.",
      "revision_date": "2005-12-22T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service distant"
    }
  ],
  "summary": "Un utilisateur mal intentionn\u00e9 peut envoyer des paquets volontairement\nmal form\u00e9s au service IKE pour provoquer son arr\u00eat et emp\u00eacher ainsi\nl\u0027\u00e9tablissement de toute nouvelle connexion.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de la solution IPsec Openswan",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Avis de s\u00e9curit\u00e9 273756/NISCC/ISAKMP de l\u0027UNIRAS",
      "url": null
    }
  ]
}

CERTA-2005-AVI-458

Vulnerability from certfr_avis - Published: - Updated:

Un utilisateur mal intentionné peut envoyer des paquets volontairement mal formés au service IKE pour provoquer son arrêt et empêcher ainsi l'établissement de toute nouvelle connexion.

Description

Openswan est une solution IPsec pour système d'exploitation Linux.

Solution

Mettre à jour les sources en version 2.4.4 au moins, ou se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Tout système Linux utilisant Openswan dans une version 2 antérieure à la 2.4.4.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Avis de sécurité 273756/NISCC/ISAKMP de l'UNIRAS	None	vendor-advisory
Avis de sécurité Openswan du 14 novembre 2005 :	-	other
Avis de sécurité de l'UNIRAS 273756/NISCC/ISAKMP du 14 novembre 2005 :	-	other
Note de vulnérabilité #226364 de l'US-CERT :	-	other
Mise à jour de sécurité Fedora Core 4 FEDORA-2005-1093 du 21 novembre 2005 :	-	other
Mise à jour de sécurité Fedora Core 3 FEDORA-2005-1092 du 21 novembre 2005 :	-	other
Bulletin de sécurité Gentoo GLSA 200512-04 du 12 décembre 2005 :	-	other
Site internet d'Openswan :	-	other
Bulletin de sécurité SUSE SuSE-SA:2005:070 du 20 décembre 2005 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eTout syst\u00e8me Linux utilisant \u003cTT\u003eOpenswan\u003c/TT\u003e dans une  version 2 ant\u00e9rieure \u00e0 la 2.4.4.\u003c/P\u003e",
  "content": "## Description\n\nOpenswan est une solution IPsec pour syst\u00e8me d\u0027exploitation Linux.\n\nUne faille dans le gestionnaire IKE des associations de s\u00e9curit\u00e9 peut\n\u00eatre exploit\u00e9e pour provoquer un d\u00e9ni de service. Par ailleurs, un\nprobl\u00e8me li\u00e9 \u00e0 la n\u00e9gociation du chiffrement 3DES est \u00e9galement corrig\u00e9.\n\n## Solution\n\nMettre \u00e0 jour les sources en version 2.4.4 au moins, ou se r\u00e9f\u00e9rer au\nbulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf.\nsection Documentation).\n",
  "cves": [
    {
      "name": "CVE-2005-3671",
      "url": "https://www.cve.org/CVERecord?id=CVE-2005-3671"
    }
  ],
  "links": [
    {
      "title": "Avis de s\u00e9curit\u00e9 Openswan du 14 novembre 2005 :",
      "url": "http://www.openswan.org/niscc2/"
    },
    {
      "title": "Avis de s\u00e9curit\u00e9 de l\u0027UNIRAS 273756/NISCC/ISAKMP du 14    novembre 2005 :",
      "url": "http://www.uniras.gov.uk/niscc/docs/br-20051114-01013.html"
    },
    {
      "title": "Note de vuln\u00e9rabilit\u00e9 #226364 de l\u0027US-CERT :",
      "url": "http://www.kb.cert.org/vuls/id/226364"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 4 FEDORA-2005-1093 du    21 novembre 2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
    },
    {
      "title": "Mise \u00e0 jour de s\u00e9curit\u00e9 Fedora Core 3 FEDORA-2005-1092 du    21 novembre 2005 :",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Gentoo GLSA 200512-04 du 12 d\u00e9cembre    2005 :",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
    },
    {
      "title": "Site internet d\u0027Openswan :",
      "url": "http://www.openswan.org"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SuSE-SA:2005:070 du 20 d\u00e9cembre    2005 :",
      "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
    }
  ],
  "reference": "CERTA-2005-AVI-458",
  "revisions": [
    {
      "description": "version initiale ;",
      "revision_date": "2005-11-16T00:00:00.000000"
    },
    {
      "description": "ajout des bulletins de s\u00e9curit\u00e9 Gentoo, Fedora Core 3 et 4, de la r\u00e9f\u00e9rence CVE, de la note de vuln\u00e9rabilit\u00e9 US-CERT et correction du num\u00e9ro de version des sources vuln\u00e9rables ;",
      "revision_date": "2005-12-20T00:00:00.000000"
    },
    {
      "description": "ajout du bulletin de s\u00e9curit\u00e9 SuSE.",
      "revision_date": "2005-12-22T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service distant"
    }
  ],
  "summary": "Un utilisateur mal intentionn\u00e9 peut envoyer des paquets volontairement\nmal form\u00e9s au service IKE pour provoquer son arr\u00eat et emp\u00eacher ainsi\nl\u0027\u00e9tablissement de toute nouvelle connexion.\n",
  "title": "Vuln\u00e9rabilit\u00e9 de la solution IPsec Openswan",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Avis de s\u00e9curit\u00e9 273756/NISCC/ISAKMP de l\u0027UNIRAS",
      "url": null
    }
  ]
}

FKIE_CVE-2005-3671

Vulnerability from fkie_nvd - Published: 2005-11-18 21:03 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html
cve@mitre.org	http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html
cve@mitre.org	http://jvn.jp/niscc/NISCC-273756/index.html
cve@mitre.org	http://secunia.com/advisories/17581
cve@mitre.org	http://secunia.com/advisories/17680
cve@mitre.org	http://secunia.com/advisories/17980
cve@mitre.org	http://secunia.com/advisories/18115
cve@mitre.org	http://securitytracker.com/id?1015214
cve@mitre.org	http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/	Exploit
cve@mitre.org	http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml
cve@mitre.org	http://www.kb.cert.org/vuls/id/226364	Third Party Advisory, US Government Resource
cve@mitre.org	http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en	Vendor Advisory
cve@mitre.org	http://www.novell.com/linux/security/advisories/2005_70_ipsec.html
cve@mitre.org	http://www.openswan.org/niscc2/	Patch, Vendor Advisory
cve@mitre.org	http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html
cve@mitre.org	http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html
cve@mitre.org	http://www.securityfocus.com/bid/15416	Patch
af854a3a-2127-422b-91ae-364da2661108	http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html
af854a3a-2127-422b-91ae-364da2661108	http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html
af854a3a-2127-422b-91ae-364da2661108	http://jvn.jp/niscc/NISCC-273756/index.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17581
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17680
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/17980
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/18115
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015214
af854a3a-2127-422b-91ae-364da2661108	http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/226364	Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.novell.com/linux/security/advisories/2005_70_ipsec.html
af854a3a-2127-422b-91ae-364da2661108	http://www.openswan.org/niscc2/	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/15416	Patch

Impacted products

Vendor	Product	Version
frees_wan	frees_wan	2.04
openswan	openswan	2.1.1
openswan	openswan	2.1.2
openswan	openswan	2.1.4
openswan	openswan	2.1.5
openswan	openswan	2.1.6
openswan	openswan	2.2
openswan	openswan	2.3
xelerance	openswan	2.4.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:frees_wan:frees_wan:2.04:*:*:*:*:*:*:*",
              "matchCriteriaId": "68C84C1F-2804-4E5F-B34E-D75530CD5A71",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A9EABDE-514F-42BA-A335-135209605981",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.1.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "2425AF51-C42B-4EAA-A619-EE47EAFCBA83",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "892D939B-4649-4B90-A2C0-6C2E4DDF7DFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.1.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "1A321B57-5E08-48C8-9288-A92342770FD1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.1.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "54780B50-9CFE-43B6-8BB9-C7246F817773",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "001E2700-CE33-495A-8F8A-81E2E550CFF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:openswan:openswan:2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "6A628FE6-A042-4DF9-A141-8BE65FD236C5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:xelerance:openswan:2.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7841F42-1226-43C4-A007-88847925D872",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."
    }
  ],
  "id": "CVE-2005-3671",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2005-11-18T21:03:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/17581"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/17680"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/17980"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/18115"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1015214"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/226364"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.openswan.org/niscc2/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/15416"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/17581"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/17680"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/17980"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/18115"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1015214"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/226364"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.openswan.org/niscc2/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/15416"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2005-3671

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2005-3671

Aliases

CVE-2005-3671

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2005-3671",
    "description": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.",
    "id": "GSD-2005-3671",
    "references": [
      "https://www.suse.com/security/cve/CVE-2005-3671.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2005-3671"
      ],
      "details": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.",
      "id": "GSD-2005-3671",
      "modified": "2023-12-13T01:20:12.834983Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2005-3671",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en",
            "refsource": "MISC",
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "name": "15416",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/15416"
          },
          {
            "name": "FEDORA-2005-1093",
            "refsource": "FEDORA",
            "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
          },
          {
            "name": "1015214",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1015214"
          },
          {
            "name": "17581",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/17581"
          },
          {
            "name": "20051214 Re:  [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
            "refsource": "BUGTRAQ",
            "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
          },
          {
            "name": "http://jvn.jp/niscc/NISCC-273756/index.html",
            "refsource": "MISC",
            "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
          },
          {
            "name": "20051213 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
            "refsource": "BUGTRAQ",
            "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
          },
          {
            "name": "GLSA-200512-04",
            "refsource": "GENTOO",
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
          },
          {
            "name": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/",
            "refsource": "MISC",
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "name": "VU#226364",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "name": "18115",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/18115"
          },
          {
            "name": "17680",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/17680"
          },
          {
            "name": "FEDORA-2005-1092",
            "refsource": "FEDORA",
            "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
          },
          {
            "name": "http://www.openswan.org/niscc2/",
            "refsource": "CONFIRM",
            "url": "http://www.openswan.org/niscc2/"
          },
          {
            "name": "17980",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/17980"
          },
          {
            "name": "SUSE-SA:2005:070",
            "refsource": "SUSE",
            "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:frees_wan:frees_wan:2.04:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.1.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.1.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:openswan:openswan:2.1.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2005-3671"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
            },
            {
              "name": "http://www.openswan.org/niscc2/",
              "refsource": "CONFIRM",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.openswan.org/niscc2/"
            },
            {
              "name": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
            },
            {
              "name": "http://jvn.jp/niscc/NISCC-273756/index.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://jvn.jp/niscc/NISCC-273756/index.html"
            },
            {
              "name": "VU#226364",
              "refsource": "CERT-VN",
              "tags": [
                "Third Party Advisory",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/226364"
            },
            {
              "name": "15416",
              "refsource": "BID",
              "tags": [
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/15416"
            },
            {
              "name": "1015214",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1015214"
            },
            {
              "name": "GLSA-200512-04",
              "refsource": "GENTOO",
              "tags": [],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
            },
            {
              "name": "20051213 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0138.html"
            },
            {
              "name": "20051214 Re:  [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
            },
            {
              "name": "SUSE-SA:2005:070",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
            },
            {
              "name": "18115",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/18115"
            },
            {
              "name": "17581",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/17581"
            },
            {
              "name": "17980",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/17980"
            },
            {
              "name": "FEDORA-2005-1092",
              "refsource": "FEDORA",
              "tags": [],
              "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00057.html"
            },
            {
              "name": "FEDORA-2005-1093",
              "refsource": "FEDORA",
              "tags": [],
              "url": "http://www.redhat.com/archives/fedora-announce-list/2005-November/msg00058.html"
            },
            {
              "name": "17680",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/17680"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2019-07-29T14:24Z",
      "publishedDate": "2005-11-18T21:03Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2005-3671 (GCVE-0-2005-3671)

GHSA-RV79-RV3W-MQQC

CERTA-2005-AVI-458

Description

Solution

CERTA-2005-AVI-458

Description

Solution

FKIE_CVE-2005-3671

GSD-2005-3671

Tags

Sightings

Nomenclature