- Description
- The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.
- Source
- cve@mitre.org
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 7.5
- Impact score
- 6.4
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:clavister:clavister_firewall:8.30.01:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EBC56EA3-A0EE-4630-8AA5-30051340BEA2"
},
{
"criteria": "cpe:2.3:o:clavister:clavister_security_gateway:8.40.05:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F7C021A7-559F-4071-AA05-C441FF3EA502"
},
{
"criteria": "cpe:2.3:o:clavister:clavister_security_gateway:8.50.02:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "90F9C5BD-7E5F-44CE-8542-711F23B66DEF"
},
{
"criteria": "cpe:2.3:o:clavister:clavister_security_gateway:8.60.01_rc1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC8B0C1D-2997-4053-90B1-5B2579AB21C1"
}
],
"operator": "OR"
}
]
}
]