VDB
CVE-2005-0039
CVE-2005-0039
PUBLISHED
CVSS 6.400000095367432 MEDIUM
Certain configurations of IPsec, when using Encapsulating Security Payload (ESP) in tunnel mode, integrity protection at a higher layer, or Authentication Header (AH), allow remote attackers to decrypt IPSec communications by modifying the outer packet in ways that cause plaintext data from the inner packet to be returned in ICMP messages, as demonstrated using bit-flipping attacks and (1) Destination Address Rewriting, (2) a modified header length that causes portions of the packet to be interpreted as IP Options, or (3) a modified protocol field and source address.
EPSS 1.90% · 83.6th percentile
Risk Scores
CVSS 2.0
6.400000095367432
EPSS Score
1.90%
83.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| nissc | ipsec | 1.0 |
| n/a | n/a | n/a |
Timeline
- May 9, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- HPSBTU01217 vendor-advisory
- http://www.niscc.gov.uk/niscc/docs/al-20050509-00386.html?lang=en url
- 20050509 NISCC Vulnerability Advisory IPSEC - 004033 mailing-list
- ADV-2005-2806 vdb
- 13562 vdb
- 17938 third-party-advisory
- ADV-2005-0507 vdb
- 1015320 vdb
- VU#302220 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2005-0039 advisory