- Description
- The Internet Key Exchange version 1 (IKEv1) implementation in Avaya VSU 100, 2000, 7500, 10000, and CSU 5000, when running IPSec, allows remote attackers to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.
- Source
- cve@mitre.org
- NVD status
- Analyzed
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:avaya:vsu_100:3.2.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "37A1F76C-D381-4C4D-8204-371494C1CBFA"
},
{
"criteria": "cpe:2.3:a:avaya:vsu_10000:3.2.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3EA831AA-8F78-45CF-BBDB-AAE6BFE7A9CC"
},
{
"criteria": "cpe:2.3:a:avaya:vsu_2000:3.2.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "519AEC26-EAC3-4D67-A90D-AAED11D0247C"
},
{
"criteria": "cpe:2.3:a:avaya:vsu_7500:3.2.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "95F12445-A8D9-4FA3-9B23-B57B21C7344B"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:avaya:csu_5000:3.2.40:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C499F7A-E22D-4856-BBF6-9687D5134751"
}
],
"operator": "OR"
}
]
}
]