94 matches found
CVE-2004-2629
CVE-2004-2629 describes multiple vulnerabilities in the H.323 protocol implementation used by First Virtual Communications Click to Meet Express (and related products) that allow remote attackers to cause denial of service, demonstrated via the H.225 protocol test suite (PROTOS). The affected com...
CVE-2005-3768
Buffer overflow in the Internet Key Exchange version 1 IKEv1 implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafte...
CVE-2005-3732
The Internet Key Exchange version 1 IKEv1 implementation isakmpagg.c in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service null dereference and crash via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for...
CVE-2005-3732
The Internet Key Exchange version 1 IKEv1 implementation isakmpagg.c in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service null dereference and crash via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for...
CVE-2005-3732
Removed by vendor...
CVE-2005-3673
CVE-2005-3673 relates to an IKEv1 DoS in Check Point products via crafted IKEv1 packets. Connected sources show a broader set of IKEv1 issues (CVE-2005-3666/3667/3668) with remote denial-of-service effects in multiple implementations (notably ipsec-tools’ racoon). The Proton/PROTOS test suite is ...
CVE-2005-3667
Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 IKEv1 have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information ...
CVE-2005-3666
Technical details (affected implementations, exact root cause, impact, and fixes for CVE-2005-3666) are not publicly available in the provided documents. Monitor for updates as new information becomes available.
Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
Multiple Cisco products contain vulnerabilities in the processing of IPSec IKE Internet Key Exchange messages. These vulnerabilities were identified by the University of Oulu Secure Programming Group OUSPG "PROTOS" Test Suite for IPSec and can be repeatedly exploited to produce a denial of servic...
PT-2005-4426 · Cisco · Cisco Ios +2
Name of the Vulnerable Software and Affected Versions: Cisco IOS affected versions not specified Description: The issue is related to vulnerabilities in the processing of IPSec IKE messages in multiple Cisco products. These vulnerabilities were identified by the University of Oulu Secure...
CVE-2003-1115
CVE-2003-1115 affects Nortel Networks Succession Communication Server 2000’s SIP-T implementation. The SIP stack allows remote attackers to trigger denial of service and potentially execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. The ava...
CVE-2003-1110
The CVE-2003-1110 issue affects the Columbia SIP User Agent (sipc) 1.74 and older builds prior to sipc 2.0 (build 2003-02-21). The vulnerability arises in its SIP Session Initiation Protocol handling, where crafted INVITE messages can cause a denial of service or allow execution of arbitrary code...
CVE-2004-0056
Multiple vulnerabilities in the H.323 protocol implementation affect Nortel Networks BCM, Succession 1000 IP Trunk/IP Peer Networking, and 802.11 Wireless IP Gateway. The issues enable remote denial of service and possibly arbitrary code execution, demonstrated via the H.225 protocol test suite (...
CVE-2003-0819
CVE-2003-0819 is a buffer-overflow vulnerability in the H.323 filter of Microsoft ISA Server 2000 that could allow remote code execution in the Microsoft Firewall Service via crafted H.323 traffic. OpenVAS entries corroborate a remote-code-execution risk; affected product is ISA Server 2000 (Gold...
Multiple Product Vulnerabilities Found by PROTOS SIP Test Suite
...
security flaw
Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into multiple candidates, one...
CVE-2001-1316
The CVE-2001-1316 issue concerns Teamware Office Enterprise Directory’s LDAP server, where buffer overflow in LDAP handling code (triggered by malformed LDAP requests) can cause remote denial-of-service and may allow arbitrary code execution, as demonstrated by the PROTOS LDAPv3 test suite. Docum...
CVE-2001-1311
CVE-2001-1311 refers to buffer overflows in Lotus Domino R5 pre-5.0.7a that allow a remote attacker to cause a denial of service and potentially execute arbitrary code, demonstrated by the PROTOS LDAPv3 test suite. The vulnerability affects Domino R5.0.7 and earlier versions, with remediation doc...
CVE-2001-1306
The CVE-2001-1306 issue affects iPlanet Directory Server 4.1.4 and earlier (LDAP). The vulnerability allows a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via invalid BER length fields, as demonstrated by the PROTOS LDAPv3 test suite. Remediation (if...
CVE-2001-1321
Oracle Internet Directory Server 2.1.1.x and 3.0.1 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via invalid encodings of BER OBJECT-IDENTIFIER values, as demonstrated by the PROTOS LDAPv3 test suite...