CVE-2005-3673
published 2005-11-18CVE-2005-3673: The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE…
PriorityP424high7.8CVSS 2.0
AVNACLAuNCNINAC
EPSS
4.88%
91.0th percentile
The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| checkpoint | express | — | — |
| checkpoint | firewall-1 | — | — |
| checkpoint | vpn-1 | — | — |
| checkpoint | vpn-1_firewall-1_next_generation | — | — |
| checkpoint | vpn-1_firewall-1_next_generation | — | — |
| checkpoint | vpn-1_firewall-1_next_generation | — | — |
| checkpoint | vpn-1_firewall-1_next_generation | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
vendor_cisco·2005-11-14
CVE-2005-3666 CWE-399 Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
Multiple Cisco products contain vulnerabilities in the processing of
IPSec IKE (Internet Key Exchange) messages. These vulnerabilities were
identified by the University of Oulu Secure Programming Group (OUSPG) "PROTOS"
Test Suite for IPSec and can be repeatedly exploited to produce a denial of
service.
Cisco has made free software available to address this vulnerability
for affected customers. Prior to deploying software, customers should consult
their maintenance provider or check the software for feature set compatibility
and known issues specific to their environment.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20051114-ipsec.
Cisco
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
vendor_cisco
CVE-2005-3673 Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
CVE-2005-3673: Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
Multiple Cisco products contain vulnerabilities in the processing of IPSec IKE (Internet Key Exchange) messages. These vulnerabilities were identified by the University of Oulu Secure Programming Group (OUSPG) "PROTOS" Test Suite for IPSec and can be repeatedly exploited to produce a denial of service. Cisco has made free software available to address this vulnerability for affected customers. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20051114-ipsec .
CWE: CWE-399, CWE-
GHSA
GHSA-6qfg-9c4g-p7cq: The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain cr
ghsa_unreviewed·2022-05-01·CVSS 10.0
CVE-2005-3673 [CRITICAL] GHSA-6qfg-9c4g-p7cq: The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain cr
The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://jvn.jp/niscc/NISCC-273756/index.htmlhttp://secunia.com/advisories/17621http://secureknowledge.us.checkpoint.com/SecureKnowledge/viewSolutionDocument.do?id=sk31316http://securitytracker.com/id?1015235http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/http://www.kb.cert.org/vuls/id/226364http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=enhttp://www.securityfocus.com/bid/15479http://www.vupen.com/english/advisories/2005/2470http://jvn.jp/niscc/NISCC-273756/index.htmlhttp://secunia.com/advisories/17621http://secureknowledge.us.checkpoint.com/SecureKnowledge/viewSolutionDocument.do?id=sk31316http://securitytracker.com/id?1015235http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/http://www.kb.cert.org/vuls/id/226364http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=enhttp://www.securityfocus.com/bid/15479http://www.vupen.com/english/advisories/2005/2470
2005-11-18
Published