CVE-2005-3667

Sažetak

Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. In addition, since "denial of service" is an impact and not a vulnerability, it is unknown which underlying vulnerabilities are actually covered by this particular candidate.

Reference

http://jvn.jp/niscc/NISCC-273756/index.html
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
http://www.kb.cert.org/vuls/id/226364
http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

05-09-2008 - 20:54

Objavljeno

18-11-2005 - 21:03