The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-18T21:00:00
Updated: 2024-08-07T23:17:23.402Z
Reserved: 2005-11-18T00:00:00
Link: CVE-2005-3671
Vulnrichment
No data.
NVD
Status : Modified
Published: 2005-11-18T21:03:00.000
Modified: 2024-11-21T00:02:24.197
Link: CVE-2005-3671
Redhat
No data.