CVE-2005-3666

Sažetak

Multiple unspecified format string vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable.

Reference

http://jvn.jp/niscc/NISCC-273756/index.html
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
http://www.kb.cert.org/vuls/id/226364
http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

05-09-2008 - 20:54

Objavljeno

18-11-2005 - 21:03