Lucene search
FortiGuard LabsFG-IR-18-214HistoryAug 27, 2018 - 12:00 a.m.
Bleichenbacher and Dictionary Attacks on IPsec IKE
2018-08-2700:00:00
FortiGuard Labs
www.fortiguard.com
7
0.003 Low
EPSS
Percentile
70.2%
Two new attacks on IPsec IKE (Internet Key Exchange) were recently disclosed [1], involving multiple ways to perform attacks against IKE signature based and PSK (Pre-Shared Key) authentications. The end goal is to crack IPsec VPN encrypted communications.
The relevant CVEs are:
CVE-2018-5389: Practical Dictionary Attacks on IPsec IKE
CVE-2018-0131: Bleichenbacher Attacks on IPsec IKE
Related
cert
cert
IKEv1 Main Mode vulnerable to brute force attacks
2018-08-14 00:00:00
cve
cve
CVE-2018-5389
2018-09-06 21:29:00
CVE-2018-0131
2018-08-14 16:29:00
f5
f5
K42378447 : IPsec IKEv1 vulnerability CVE-2018-5389
2018-10-22 00:00:00
ubuntucve
ubuntucve
CVE-2018-5389
2018-09-06 00:00:00
cvelist
cvelist
CVE-2018-5389 CVE-2018-5389
2018-09-06 21:00:00
CVE-2018-0131
2018-08-13 00:00:00
redhatcve
redhatcve
CVE-2018-5389
2020-01-25 22:02:57
debiancve
debiancve
CVE-2018-5389
2018-09-06 21:29:00
prion
prion
Authentication flaw
2018-09-06 21:29:00
Design/Logic Flaw
2018-08-14 16:29:00
nessus
nessus
RHEL 7 : openswan (Unpatched Vulnerability)
2024-06-03 00:00:00
F5 Networks BIG-IP : IPsec IKEv1 vulnerability (K42378447)
2023-11-02 00:00:00
RHEL 8 : openswan (Unpatched Vulnerability)
2024-06-03 00:00:00
nvd
nvd
CVE-2018-5389
2018-09-06 21:29:00
CVE-2018-0131
2018-08-14 16:29:00
cisco
cisco
threatpost
threatpost
Researchers Break IPsec VPN Connections with 20-Year-Old Protocol Flaw
2018-08-14 16:07:22