VDB
CVE-2005-3732
CVE-2005-3732
PUBLISHED
CVSS 7.800000190734863 HIGH
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
EPSS 16.17% · 94.9th percentile
Risk Scores
CVSS 2.0
7.800000190734863
EPSS Score
16.17%
94.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ipsec-tools | ipsec-tools | 0.5.2, 0.5, 0.5.1 |
| n/a | n/a | * |
Exploit Intelligence
- http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3&r2=1.20.2.4&diff_format=u (circl)
- oval:org.mitre.oval:def:9857 (circl)
- 18616 (circl)
- http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en (circl)
- 20210 (circl)
- 15523 (circl)
- [ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools (circl)
- 1015254 (circl)
- DSA-965 (circl)
- 20051214 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation (circl)
…and 15 more exploits
Timeline
- Nov 17, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Apr 16, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3&r2=1.20.2.4&diff_format=u url
- oval:org.mitre.oval:def:9857 vdb
- 18616 third-party-advisory
- http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en url
- 20210 third-party-advisory
- 15523 vdb
- [ipsec-tools-devel] 20051120 Potential DoS fixed in ipsec-tools mailing-list
- 1015254 vdb
- DSA-965 vendor-advisory
- 20051214 Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation mailing-list
- 18742 third-party-advisory
- GLSA-200512-04 vendor-advisory
- http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/ url
- 20060501-01-U vendor-advisory
- RHSA-2006:0267 vendor-advisory
- 19833 third-party-advisory
- 17668 third-party-advisory
- FLSA-2006:190941 vendor-advisory
- 18115 third-party-advisory
- 17822 third-party-advisory
…and 8 more