Vulnerability CVE-2005-4565


Published: 2005-12-29   Modified: 2012-02-12

Description:
Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Adtran -> Netvanta 

 References:
http://www2.adtran.com/support/isakmp/
http://secunia.com/advisories/18179
http://www.vupen.com/english/advisories/2005/3027
http://www.securityfocus.com/bid/16028

Copyright 2024, cxsecurity.com

 

Back to Top