CyberSec.Space Logo
Back to CVE Browser

CVE-2005-3732

HIGH
7.8
CVSS Severity Score
EPSS Score0.0190%
EPSS Percentile6.10th
PublishedNov 21, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Affected Platforms (CPE)

πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.5
πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.5.1
πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.5.2
πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.6
πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.6.1
πŸ“¦
Ipsec Tools

Ipsec Tools

= 0.6.2

References & Advisories

πŸ”— ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc
πŸ”— http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html
πŸ”— http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3&r2=1.20.2.4&diff_format=u
πŸ”— http://rhn.redhat.com/errata/RHSA-2006-0267.html
πŸ”— http://secunia.com/advisories/17668
πŸ”— http://secunia.com/advisories/17822
πŸ”— http://secunia.com/advisories/17980
πŸ”— http://secunia.com/advisories/18115

Related Vulnerabilities

CVE-2015-40477.8

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon...

CVE-2008-36527.8

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remote...

CVE-2016-103967.5

The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing IS...

CVE-2009-15745.0

racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragment...