- Description
- Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
- Source
- cve@mitre.org
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 10
- Impact score
- 10
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "093D7E4E-6DCC-4BBB-B6B2-2A679E95CC28"
},
{
"criteria": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CEA4735-EC77-4179-86DC-C8BF702CCD08"
},
{
"criteria": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BF1B393E-6DC3-4F5F-B24C-8207245C74E1"
}
],
"operator": "OR"
}
]
}
]