Vulnerability Details : CVE-2005-3667
Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. In addition, since "denial of service" is an impact and not a vulnerability, it is unknown which underlying vulnerabilities are actually covered by this particular candidate.
Vulnerability category: Denial of service
Products affected by CVE-2005-3667
- cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-3667
0.43%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-3667
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2005-3667
-
http://www.kb.cert.org/vuls/id/226364
VU#226364 - Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementationsThird Party Advisory;US Government Resource
-
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
-
http://jvn.jp/niscc/NISCC-273756/index.html
NISCC-273756: ISAKMP プロトコルの実装に複数の脆弱性
-
http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en
Vendor Advisory
Jump to