CVE-2005-3733 — Vulnetix

CVE-2005-3733 PUBLISHED CVSS 7.5 HIGH

The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers before 7-1-0, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

EPSS 6.51% · 91.3th percentile

Risk Scores

CVSS 2.0

7.5

EPSS Score

6.51%

91.3th percentile

Affected Products

Vendor	Product	Versions
juniper	junos_t	0
juniper	junose_j	0
juniper	junos_e	0
juniper	junos_j	0
juniper	junose_t	0
juniper	junos_m	0
juniper	junose_m	0
juniper	junose_e	0
n/a	n/a	n/a

Exploit Intelligence

ADV-2005-2410 (circl)
http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en (circl)
1015203 (circl)
http://jvn.jp/niscc/NISCC-273756/index.html (circl)
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/ (circl)
VU#226364 (circl)
17568 (circl)
15402 (circl)

Timeline

Nov 17, 2005 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 17, 2023 EPSS Score
Sep 8, 2023 EPSS Score

References

http://www.securityfocus.com/bid/15402 technical
ADV-2005-2410 vdb
http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en url
1015203 vdb
http://jvn.jp/niscc/NISCC-273756/index.html url
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/ url
VU#226364 third-party-advisory
17568 third-party-advisory
https://nvd.nist.gov/vuln/detail/CVE-2005-3733 advisory
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp url

Open in Interactive Console →