CVE-2005-3667

high

Description

Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. In addition, since "denial of service" is an impact and not a vulnerability, it is unknown which underlying vulnerabilities are actually covered by this particular candidate.

References

http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en

http://www.kb.cert.org/vuls/id/226364

http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/

http://jvn.jp/niscc/NISCC-273756/index.html

Details

Source: Mitre, NVD

Published: 2005-11-18

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Severity: Medium

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High