Lucene search

[email protected]CVE-2005-3985

HistoryDec 04, 2005 - 10:03 p.m.

CVE-2005-3985

2005-12-0422:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

astaro security linux

ikev1

vulnerability

denial of service

arbitrary code execution

crafted packets

nvd

cve-2005-3985

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.026 Low

EPSS

Percentile

90.2%

JSON

The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux before 6.102 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

CPENameOperatorVersion
astaro:security_linuxastaro security linuxeq6.101
astaro:security_linuxastaro security linuxeq6.001
astaro:security_linuxastaro security linuxeq6.002

CPE	Name	Operator	Version
astaro:security_linux	astaro security linux	eq	6.101
astaro:security_linux	astaro security linux	eq	6.001
astaro:security_linux	astaro security linux	eq	6.002

References

secunia.com/advisories/17838

www.astaro.org/showflat.php?Cat=&Number=63958&page=0&view=collapsed&sb=5&o=&fpart=1#63958

www.securityfocus.com/bid/15666

www.vupen.com/english/advisories/2005/2678

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.026 Low

EPSS

Percentile

90.2%

JSON

Related for CVE-2005-3985

nessus8 cve15 prion2 cisco1