CVE-2005-3732

{"id": "CVE-2005-3732", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-11-21T22:03:00.000", "references": [{"url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc", "source": "secalert@redhat.com"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html", "source": "secalert@redhat.com"}, {"url": "http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3&r2=1.20.2.4&diff_format=u", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2006-0267.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/17668", "tags": ["Patch", "Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/17822", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/17980", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18115", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18616", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/18742", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/19833", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/20210", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://securitytracker.com/id?1015254", "source": "secalert@redhat.com"}, {"url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454&forum_id=32000", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2006/dsa-965", "source": "secalert@redhat.com"}, {"url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/", "source": "secalert@redhat.com"}, {"url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml", "source": "secalert@redhat.com"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:020", "source": "secalert@redhat.com"}, {"url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en", "source": "secalert@redhat.com"}, {"url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/archive/1/436343/100/0/threaded", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/15523", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://www.vupen.com/english/advisories/2005/2521", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9857", "source": "secalert@redhat.com"}, {"url": "https://usn.ubuntu.com/221-1/", "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."}], "lastModified": "2018-10-19T15:38:56.840", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5630CFB-58BF-4B58-90AB-B44793D91FE6"}, {"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "001D8969-A212-4FD5-BF76-0C269EEB0959"}, {"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EA224969-79DD-4908-8B72-ADEEE1126EE4"}, {"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7654CC3F-2EA0-484E-BA60-A5051DDB27B3"}, {"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF78AECE-073F-4CDE-B988-47E72637C6E9"}, {"criteria": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0740E4E3-9888-48E2-B7A3-CF8376FBA90A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}