VDB
CVE-2005-3768
CVE-2005-3768
PUBLISHED
CVSS 7.5 HIGH
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
EPSS 4.00% · 88.7th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
4.00%
88.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| symantec | gateway_security_5100 | |
| symantec | firewall_vpn_appliance_100 | |
| symantec | gateway_security_400 | 2.0 |
| symantec | gateway_security_5300 | 1.0 |
| symantec | firewall_vpn_appliance_200 | |
| symantec | gateway_security_300 | 2.0 |
| symantec | enterprise_firewall | 8.0, 8.0 |
| symantec | gateway_security_5400 | 2.0.1 |
| symantec | gateway_security_5000_series | 3.0 |
| n/a | n/a | n/a |
| symantec | gateway_security_5310 | 1.0 |
Exploit Intelligence
- 1015247 (circl)
- 17684 (circl)
- ADV-2005-2517 (circl)
- 1015249 (circl)
- http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html (circl)
- 1015248 (circl)
Timeline
- Nov 15, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- 1015247 vdb
- 17684 third-party-advisory
- ADV-2005-2517 vdb
- 1015249 vdb
- http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html url
- 1015248 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2005-3768 advisory