// For flags

CVE-2005-3671

 

Severity Score

7.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

1
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The Internet Key Exchange version 1 (IKEv1) implementation in Openswan 2 (openswan-2) before 2.4.4, and freeswan in SUSE LINUX 9.1 before 2.04_1.5.4-1.23, allow remote attackers to cause a denial of service via (1) a crafted packet using 3DES with an invalid key length, or (2) unspecified inputs when Aggressive Mode is enabled and the PSK is known, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2005-11-18 CVE Reserved
  • 2005-11-18 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-07 CVE Updated
  • 2024-08-07 First Exploit
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Frees Wan
Search vendor "Frees Wan"
Frees Wan
Search vendor "Frees Wan" for product "Frees Wan"
2.04
Search vendor "Frees Wan" for product "Frees Wan" and version "2.04"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.1.1
Search vendor "Openswan" for product "Openswan" and version "2.1.1"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.1.2
Search vendor "Openswan" for product "Openswan" and version "2.1.2"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.1.4
Search vendor "Openswan" for product "Openswan" and version "2.1.4"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.1.5
Search vendor "Openswan" for product "Openswan" and version "2.1.5"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.1.6
Search vendor "Openswan" for product "Openswan" and version "2.1.6"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.2
Search vendor "Openswan" for product "Openswan" and version "2.2"
-
Affected
Openswan
Search vendor "Openswan"
Openswan
Search vendor "Openswan" for product "Openswan"
2.3
Search vendor "Openswan" for product "Openswan" and version "2.3"
-
Affected
Xelerance
Search vendor "Xelerance"
Openswan
Search vendor "Xelerance" for product "Openswan"
2.4.0
Search vendor "Xelerance" for product "Openswan" and version "2.4.0"
-
Affected