返回 CVE 浏览器

CVE-2005-3732

HIGH

7.8

CVSS Severity Score

EPSS Score0.0190%

EPSS Percentile6.10th

Published2005年11月21日

Last Modified2026年4月16日

Vulnerability Description

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Affected Platforms (CPE)

📦

Ipsec Tools

Ipsec Tools

= 0.5

📦

Ipsec Tools

Ipsec Tools

= 0.5.1

📦

Ipsec Tools

Ipsec Tools

= 0.5.2

📦

Ipsec Tools

Ipsec Tools

= 0.6

📦

Ipsec Tools

Ipsec Tools

= 0.6.1

📦

Ipsec Tools

Ipsec Tools

= 0.6.2

References & Advisories

🔗 ftp://patches.sgi.com/support/free/security/advisories/20060501-01-U.asc

🔗 http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html

🔗 http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3&r2=1.20.2.4&diff_format=u

🔗 http://rhn.redhat.com/errata/RHSA-2006-0267.html

🔗 http://secunia.com/advisories/17668

🔗 http://secunia.com/advisories/17822

🔗 http://secunia.com/advisories/17980

🔗 http://secunia.com/advisories/18115

相关漏洞威胁

CVE-2015-40477.8

racoon/gssapi.c in IPsec-Tools 0.8.2 allows remote attackers to cause a denial of service (NULL pointer dereference and IKE daemon...

CVE-2008-36527.8

src/racoon/handler.c in racoon in ipsec-tools does not remove an "orphaned ph1" (phase 1) handle when it has been initiated remote...

CVE-2016-103967.5

The racoon daemon in IPsec-Tools 0.8.2 contains a remotely exploitable computational-complexity attack when parsing and storing IS...

CVE-2009-15745.0

racoon/isakmp_frag.c in ipsec-tools before 0.7.2 allows remote attackers to cause a denial of service (crash) via crafted fragment...