CVE-2005-4565

Published Dec 29, 2005

Last updated 14 years ago

Overview

Description: Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 10
Impact score: 10
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "093D7E4E-6DCC-4BBB-B6B2-2A679E95CC28"
          },
          {
            "criteria": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1CEA4735-EC77-4179-86DC-C8BF702CCD08"
          },
          {
            "criteria": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF1B393E-6DC3-4F5F-B24C-8207245C74E1"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References