CVE-2005-3732

Summary

CVE	CVE-2005-3732
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2005-11-21 22:03:00 UTC
Updated	2018-10-19 15:38:00 UTC
Description	The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Risk And Classification

Problem Types: CWE-399

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ipsec-tools	Ipsec-tools	0.5	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.5.1	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.5.2	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6.1	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6.2	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.5	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.5.1	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.5.2	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6.1	All	All	All
Application	Ipsec-tools	Ipsec-tools	0.6.2	All	All	All

References

Reference	Source	Link	Tags
www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp	MISC	www.ee.oulu.fi
rhn.redhat.com \| Red Hat Support	REDHAT	rhn.redhat.com
SecurityFocus	FEDORA	www.securityfocus.com
Secunia - Advisories - Debian update for ipsec-tools	SECUNIA	secunia.com	Vendor Advisory
SourceForge.net: BlackBerryTools: blackberrytools-users	MLIST	sourceforge.net
USN-221-1: racoon vulnerability \| Ubuntu security notices	UBUNTU	usn.ubuntu.com
Secunia - Advisories - SUSE update for ipsec-tools / freeswan / openswan	SECUNIA	secunia.com	Vendor Advisory
Debian -- Security Information -- DSA-965-1 ipsec-tools	DEBIAN	www.debian.org
Neohapsis Archives - Bugtraq - #0161 - Re: [ GLSA 200512-04 ] Openswan, IPsec-Tools: Vulnerabilities in ISAK MP Protocol implementation	BUGTRAQ	archives.neohapsis.com
20060501-01-U	SGI	patches.sgi.com
SecurityTracker.com Archives - IPSec-tools IKE Processing Lets Remote Users Deny Service	SECTRACK	securitytracker.com
Security Announcement	SUSE	www.novell.com
Repository / Oval Repository	OVAL	oval.cisecurity.org
Secunia - Advisories - Ubuntu update for ipsec-tools	SECUNIA	secunia.com	Vendor Advisory
Gentoo Linux Documentation -- Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation	GENTOO	www.gentoo.org
cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c	MISC	cvs.sourceforge.net	Patch
Secunia - Advisories - Red Hat update for ipsec-tools	SECUNIA	secunia.com	Vendor Advisory
Secunia - Advisories - IPsec-Tools ISAKMP IKE Message Processing Denial of Service	SECUNIA	secunia.com	Patch, Vendor Advisory
Secunia - Advisories - Mandriva update for ipsec-tools	SECUNIA	secunia.com
www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf	MISC	www.niscc.gov.uk
Advisories - Mandriva Linux	MANDRIVA	www.mandriva.com
Secunia - Advisories - Gentoo update for openswan / ipsec-tools	SECUNIA	secunia.com	Vendor Advisory
Secunia - Advisories - SGI Advanced Linux Environment Multiple Updates	SECUNIA	secunia.com	Vendor Advisory
IPSec-Tools IKE Message Handling Denial of Service Vulnerability	BID	www.securityfocus.com	Patch
Webmail : Solution de messagerie professionnelle - OVHcloud- OVH	VUPEN	www.vupen.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.