CVE

CVE-2005-3669

Date: (C)2005-11-18   (M)2023-12-22

Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Cisco advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL

Reference:

SECTRACK-1015198

SECTRACK-1015199

SECTRACK-1015200

SECTRACK-1015201

SECTRACK-1015202

BID-15401

SECUNIA-17553

http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml

VU#226364

http://jvn.jp/niscc/NISCC-273756/index.html

http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/

http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en

oval:org.mitre.oval:def:5226