CVE-2005-3732

CWE-39911 documents7 sources

Severity

7.8HIGH

EPSS

16.2%

top 5.19%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Ipsec-tools Ipsec-tools

Timeline

PublishedNov 21

Latest updateMay 3

Description

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDipsec-tools/ipsec-tools6 versions+5

Patches

Patch: cvs.sourceforge.net ↗Patch: secunia.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-wr7q-9p2g-rv39: The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg↗2022-05-03

▶

CVEList

CVE-2005-3732: The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg↗2005-11-21

▶

📋Vendor Advisories

Ubuntu

racoon vulnerability↗2005-12-01

▶

Red Hat

security flaw↗2005-11-20

▶

Cisco

Multiple Vulnerabilities Found by PROTOS IPSec Test Suite↗2005-11-14

▶

💬Community

Bugzilla

CVE-2005-3732 security flaw↗2018-08-16

▶

Bugzilla

CVE-2005-3732 ipsec-tools IKE DoS↗2006-02-15

▶

Bugzilla

CVE-2005-3732 ipsec-tools IKE DoS↗2005-11-25

▶

Bugzilla

CVE-2005-3732 ipsec-tools IKE DoS↗2005-11-21

▶

Bugzilla

CVE-2005-3732 ipsec-tools IKE DoS↗2005-11-21

▶