CVE-2005-3671

The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Severity	HIGH
CVSS	7.8
CWE	NVD-CWE-Other
KEV
Published	20 years ago
Modified	1 month ago

Related Products

Product	Advisory	Evidence
Cisco Wireless LAN Controller (WLC)	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco VPN 3000 Series Concentrator	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco PIX Firewall Software	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco PIX Firewall	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco MDS SAN-OS Software	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco Firewall Services Module (FWSM)	cisco-sa-20051114-ipsec	Cisco OpenVuln
Cisco Adaptive Security Appliance (ASA) Software	cisco-sa-20051114-ipsec	Cisco OpenVuln