Search

Find a vulnerability

Search criteria

    82 vulnerabilities by qnx

    VAR-200707-0675

    Vulnerability from variot - Updated: 2026-04-10 22:49

    The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka "DNS Insufficient Socket Entropy Vulnerability" or "the Kaminsky bug.". Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. ISC (Internet Systems Consortiuim) BIND generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches. In IP NAT filtering in Sun Solaris 10 and OpenSolaris series products, when a DNS server runs NAT, it incorrectly changes the original address of the data packet. When the destination address is a DNS port, it will allow remote attackers to bypass CVE-2008 -1447 security protection. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    Cisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache Poisoning Attacks

    Advisory ID: cisco-sa-20080708-dns

    http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml

    Revision 1.0

    For Public Release 2008 July 08 1800 UTC (GMT)

    Summary

    Multiple Cisco products are vulnerable to DNS cache poisoning attacks due to their use of insufficiently randomized DNS transaction IDs and UDP source ports in the DNS queries that they produce, which may allow an attacker to more easily forge DNS answers that can poison DNS caches.

    To exploit this vulnerability an attacker must be able to cause a vulnerable DNS server to perform recursive DNS queries. Therefore, DNS servers that are only authoritative, or servers where recursion is not allowed, are not affected.

    Cisco has released free software updates that address this vulnerability.

    This advisory is posted at http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml.

    This security advisory is being published simultaneously with announcements from other affected organizations. Products that process DNS messages with the RD flag set will attempt to answer the question asked on behalf of the client. A product is only affected if using a vulnerable implementation of the DNS protocol, the DNS server functionality for the product is enabled, and the DNS feature for the product is configured to process recursive DNS query messages.

    Vulnerable Products +------------------

    The following Cisco products are capable of acting as DNS servers and have been found to have the DNS implementation weakness that makes some types of DNS cache poisoning attacks more likely to succeed:

    • Cisco IOS Software

      A device that is running Cisco IOS Software will be affected if it is running a vulnerable version and if it is acting as a DNS server.

      All Cisco IOS Software releases that support the DNS server functionality and that have not had their DNS implementation improved are affected. For information about specific fixed versions, please refer to the Software Versions and Fixes section.

      A device that is running Cisco IOS Software is configured to act as a DNS server if the command "ip dns server" is present in the configuration. This command is not enabled by default.

    • Cisco Network Registrar

      All Cisco Network Registrar versions are affected, and DNS services are enabled by default.

      The DNS server on CNR is enabled via the command-line interface (CLI) commands "server dns enable start-on-reboot" or "dns enable start-on-reboot" or via the web management interface in the Servers page by selecting the appropriate "Start," "Stop," or "Reload" button.

    • Cisco Application and Content Networking System

      All Cisco Application and Content Networking System (ACNS) versions are affected; DNS services are disabled by default.

      ACNS is configured to act as a DNS server if the command "dns enable" is present in the configuration.

    • Cisco Global Site Selector Used in Combination with Cisco Network Registrar

      The Cisco Global Site Selector (GSS) is affected when it is used in combination with Cisco Network Registrar software to provide a more complete DNS solution. Fixed software would come in the form of an update of the Cisco Network Registrar software rather than an update of the GSS software.

    Products Confirmed Not Vulnerable +--------------------------------

    Products that do not offer DNS server capabilities are not affected by this vulnerability.

    The Cisco GSS by itself is not affected by this vulnerability. However, it is affected when it is used with Cisco Network Registrar software.

    No other Cisco products are currently known to be affected by these vulnerabilities.

    Details

    The Domain Name System is an integral part of networks that are based on TCP/IP such as the Internet. Simply stated, the Domain Name System is a hierarchical database that contains mappings of hostnames and IP addresses. When handling a query from a DNS client, a DNS server can look into its portion of the global DNS database (if the query is for a portion of the DNS database for which the DNS server is authoritative), or it can relay the query to other DNS servers (if it is configured to do so and if the query is for a portion of the DNS database for which the DNS server is not authoritative.)

    Because of the processing time and bandwidth that is associated with handling a DNS query, most DNS servers locally store responses that are received from other DNS servers. The area where these responses are stored locally is called a "cache." Once a response is stored in a cache, the DNS server can use the locally stored response for a certain time (called the "time to live") before having to query DNS servers again to refresh the local (cached) copy of the response. For example, if www.example.com is mapped to the IP address 192.168.0.1 and this mapping is present in the cache of a DNS server, an attacker who succeeds in poisoning the DNS cache of this server may be able to map www.example.com to 10.0.0.1 instead. If this happens, a user who is trying to visit www.example.com may end up contacting the wrong web server. The fundamental implementation weakness is that the DNS transaction ID and source port number used to validate DNS responses are not sufficiently randomized and can easily be predicted, which allows an attacker to create forged responses to DNS queries that will match the expected values. The DNS server will consider such responses to be valid.

    The following Cisco products that offer DNS server functionality have been found to be susceptible to DNS cache poisoning attacks:

    • Cisco IOS Software: The vulnerability documented in Cisco bug ID CSCso81854.

    • Cisco Network Registrar: The vulnerability documented in Cisco bug ID CSCsq01298.

    • Cisco Application and Content Networking System (ACNS): The vulnerability documented in Cisco bug ID CSCsq21930.

    This vulnerability has been assigned Common Vulnerabilities and Exposures (CVE) ID CVE-2008-1447.

    Vulnerability Scoring Details +----------------------------

    Cisco has provided scores for the vulnerabilities in this advisory based on the Common Vulnerability Scoring System (CVSS). The CVSS scoring in this Security Advisory is done in accordance with CVSS version 2.0.

    CVSS is a standards-based scoring method that conveys vulnerability severity and helps determine urgency and priority of response.

    Cisco has provided a base and temporal score. Customers can then compute environmental scores to assist in determining the impact of the vulnerability in individual networks.

    Cisco has provided an FAQ to answer additional questions regarding CVSS at

    http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html

    Cisco has also provided a CVSS calculator to help compute the environmental impact for individual networks at

    http://intellishield.cisco.com/security/alertmanager/cvss

    Cisco Bugs:

    • DNS cache prone to poisoning/forged answers attacks (CSCsq21930)

    • DNS susceptible to forged query response attacks (CSCsq01298)

    • Need to make DNS implementation more resilient against forged answers (CSCso81854)

    CVSS Base Score - 6.4 Access Vector - Network Access Complexity - Low Authentication - None Confidentiality Impact - None Integrity Impact - Partial Availability Impact - Partial

    CVSS Temporal Score - 5.3 Exploitability - Functional Remediation Level - Official-Fix Report Confidence - Confirmed

    (same score for the three Cisco bugs listed above.)

    Impact

    Successful exploitation of the vulnerability described in this document may result in invalid hostname-to-IP address mappings in the cache of an affected DNS server. This may lead users of this DNS server to contact the wrong provider of network services. The ultimate impact varies greatly, ranging from a simple denial of service (for example, making www.example.com resolve to 127.0.0.1) to phishing and financial fraud.

    Software Versions and Fixes

    When considering software upgrades, also consult http://www.cisco.com/go/psirt and any subsequent advisories to determine exposure and a complete upgrade solution.

    In all cases, customers should exercise caution to be certain the devices to be upgraded contain sufficient memory and that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, contact the Cisco Technical Assistance Center (TAC) or your contracted maintenance provider for assistance.

    Cisco IOS Software +-----------------

    Each row of the Cisco IOS Software table (below) names a Cisco IOS Software release train. If a given release train is vulnerable, then the earliest possible releases that contain the fix (along with the anticipated date of availability for each, if applicable) are listed in the "First Fixed Release" column of the table. The "Recommended Release" column indicates the releases which have fixes for all the published vulnerabilities at the time of this Advisory. A device running a release in the given train that is earlier than the release in a specific column (less than the First Fixed Release) is known to be vulnerable. Cisco recommends upgrading to a release equal to or later than the release in the "Recommended Releases" column of the table.

    +----------------------------------------+ | Major | Availability of | | Release | Repaired Releases | |------------+---------------------------| | Affected | First Fixed | Recommended | | 12.0-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | 12.0 | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)DB | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0DB | release | | | | 12.0(7)DB | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)DC | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0DC | release | | | | 12.0(7)DC | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0S | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0ST | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0SZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.0T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.0W | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0WC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.0WT | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.0(7)XE1 | | | | are | | | 12.0XE | vulnerable, | | | | release | | | | 12.0(7)XE1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.0XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)XK2 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0XK | release | | | | 12.0(7)XK2 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0XL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.0(7)XR1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.0XR | release | | | | 12.0(7)XR1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.0XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.0XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.1-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.1 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.1AA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1AX | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(22)AY1 | | | | are | | | 12.1AY | vulnerable, | 12.1(22) | | | release | EA11 | | | 12.1(22)AY1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1AZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1CX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(4)DB1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1DB | release | | | | 12.1(4)DB1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(4)DC2 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1DC | release | | | | 12.1(4)DC2 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.1E | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(11)EA1 | | | | are | | | 12.1EA | vulnerable, | 12.1(22) | | | release | EA11 | | | 12.1(11)EA1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1EB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EW | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.1(8a)EX | | | | are | | | 12.1EX | vulnerable, | | | | release | | | | 12.1(8a)EX | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1EY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1EZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1GA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1GB | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.1T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.1XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XB | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.1(1)XC1 | | | | are | | | | vulnerable, | 12.4(19a) | | 12.1XC | release | | | | 12.1(1)XC1 | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.1XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XT | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1XZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YD | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Note: | | | | Releases | | | | prior to | | | | 12.1(5)YE1 | | | | are | 12.4(19a) | | 12.1YE | vulnerable, | | | | release | 12.4(19b) | | | 12.1(5)YE1 | | | | and later | | | | are not | | | | vulnerable; | | |------------+-------------+-------------| | 12.1YF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.1YJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.2-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2B | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2BC | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2BW | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.2(8)BY | | | | are | | | | vulnerable, | 12.4(19a) | | 12.2BY | release | | | | 12.2(8)BY | 12.4(19b) | | | and later | | | | are not | | | | vulnerable; | | | | first fixed | | | | in 12.4 | | |------------+-------------+-------------| | 12.2BZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2CZ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.2DA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2DD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2DX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EWA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2EZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2FZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2IXF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2MB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2MC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2S | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SBC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SCA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SED | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SEG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SGA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SRC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SVD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SXI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2SZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.2(8) | | | | TPC10d are | | | | vulnerable, | | | 12.2TPC | release | | | | 12.2(8) | | | | TPC10d and | | | | later are | | | | not | | | | vulnerable; | | |------------+-------------+-------------| | 12.2UZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XC | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XG | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XH | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XI | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XK | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XL | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XM | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XN | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XNA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XO | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XS | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XT | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2XU | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2XV | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2XW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YD | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YE | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YG | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YH | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YJ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2YK | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YL | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YM | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YN | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.2(18) | | | migrate to | SXF15; | | 12.2YO | any release | Available | | | in 12.2SY | on | | | | 08-AUG-08 | |------------+-------------+-------------| | 12.2YP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YR | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YS | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YT | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YU | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2YV | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2YW | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2YZ | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZA | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.2ZC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZD | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZE | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZF | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZG | first fixed | | | | in 12.4T | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZH | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.2ZJ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.2ZL | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.2ZP | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZY | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.2ZYA | Not | | | | Vulnerable | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.3-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3 | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3B | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3BC | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3BW | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3EU | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JEC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JL | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.3JX | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3T | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3TPC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.3VA | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XA | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XB | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XC | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XD | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XE | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XF | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XG | first fixed | | | | in 12.4T | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XH | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3XI | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3XJ | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XK | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XQ | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3XR | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(19a) | | 12.3XS | first fixed | | | | in 12.4 | 12.4(19b) | |------------+-------------+-------------| | 12.3XU | Not | | | | Vulnerable | | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3XW | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.3XY | Not | | | | Vulnerable | | |------------+-------------+-------------| | | | 12.4(19a) | | | | | | | Vulnerable; | 12.4(19b) | | 12.3YA | first fixed | | | | in 12.4 | 12.4(20)T; | | | | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YD | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | | 12.3(14) | | | | YX12 | | | Vulnerable; | | | 12.3YF | first fixed | 12.4(20)T; | | | in 12.3YX | Available | | | | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YG | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YH | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YI | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.3YJ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YK | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Releases | | | | prior to | | | | 12.3(14) | | | | YM12 are | | | | vulnerable, | 12.3(14) | | 12.3YM | release | YM12 | | | 12.3(14) | | | | YM12 and | | | | later are | | | | not | | | | vulnerable; | | |------------+-------------+-------------| | 12.3YQ | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YS | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.3YT | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | | Vulnerable; | | | 12.3YU | first fixed | | | | in 12.4XB | | |------------+-------------+-------------| | 12.3YX | 12.3(14) | 12.3(14) | | | YX12 | YX12 | |------------+-------------+-------------| | 12.3YZ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | Affected | First Fixed | Recommended | | 12.4-Based | Release | Release | | Releases | | | |------------+-------------+-------------| | | 12.4(18b) | | | | | | | | 12.4(19a) | 12.4(19a) | | 12.4 | | | | | 12.4(19b) | 12.4(19b) | | | | | | | 12.4(21) | | |------------+-------------+-------------| | 12.4JA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMA | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMB | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JMC | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4JX | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4MD | 12.4(15)MD | 12.4(15)MD | |------------+-------------+-------------| | 12.4MR | 12.4(19)MR | 12.4(19)MR | |------------+-------------+-------------| | 12.4SW | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | 12.4(15)T6 | | | | | 12.4(20)T; | | 12.4T | 12.4(20)T; | Available | | | Available | on | | | on | 11-JUL-08 | | | 11-JUL-08 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XA | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XB | 12.4(2)XB10 | | |------------+-------------+-------------| | 12.4XC | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | | 12.4(4) | 12.4(20)T; | | | XD11; | Available | | 12.4XD | Available | on | | | on | 11-JUL-08 | | | 31-JUL-08 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XE | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XF | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4XG | Not | | | | Vulnerable | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XJ | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | |------------+-------------+-------------| | 12.4XK | Not | | | | Vulnerable | | |------------+-------------+-------------| | 12.4XL | 12.4(15)XL2 | 12.4(15)XL2 | |------------+-------------+-------------| | 12.4XM | 12.4(15)XM1 | 12.4(15)XM1 | |------------+-------------+-------------| | 12.4XN | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XQ | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XT | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XV | Vulnerable; | | | | contact TAC | | |------------+-------------+-------------| | 12.4XW | 12.4(11)XW8 | 12.4(11)XW6 | |------------+-------------+-------------| | 12.4XY | 12.4(15)XY3 | | |------------+-------------+-------------| | | Vulnerable; | 12.4(20)T; | | 12.4XZ | first fixed | Available | | | in 12.4T | on | | | | 11-JUL-08 | +----------------------------------------+

    Cisco Network Registrar +----------------------

    +---------------------------------------+ | Affected | | | Release | First Fixed Release | | Train | | |--------------+------------------------| | 6.1.x | Contact TAC | |--------------+------------------------| | | 6.3.1.1 patch; | | 6.3.x | available mid-July | | | 2008 | |--------------+------------------------| | 7.0.x | 7.0.1; available in | | | mid-July 2008 | +---------------------------------------+

    Cisco Network Registrar software is available for download at:

    http://www.cisco.com/pcgi-bin/Software/Tablebuild/tablebuild.pl/nr-eval

    Cisco Application and Content Networking System +----------------------------------------------

    This issue is fixed in version 5.5.11 of Cisco ACNS software. This release will be available for download from www.cisco.com in late July 2008.

    Cisco ACNS 5.5 software is available for download at:

    http://www.cisco.com/pcgi-bin/tablebuild.pl/acns55

    Workarounds

    There are no workarounds.

    Additional information about identification and mitigation of attacks against DNS is in the Cisco Applied Intelligence white paper "DNS Best Practices, Network Protections, and Attack Identification," available at http://www.cisco.com/web/about/security/intelligence/dns-bcp.html.

    Obtaining Fixed Software

    Cisco has released free software updates that address these vulnerabilities. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment.

    Customers may only install and expect support for the feature sets they have purchased. By installing, downloading, accessing or otherwise using such software upgrades, customers agree to be bound by the terms of Cisco's software license terms found at http://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html, or as otherwise set forth at Cisco.com Downloads at http://www.cisco.com/public/sw-center/sw-usingswc.shtml.

    Do not contact psirt@cisco.com or security-alert@cisco.com for software upgrades.

    Customers with Service Contracts +-------------------------------

    Customers with contracts should obtain upgraded software through their regular update channels. For most customers, this means that upgrades should be obtained through the Software Center on Cisco's worldwide website at http://www.cisco.com.

    Customers using Third Party Support Organizations +------------------------------------------------

    Customers whose Cisco products are provided or maintained through prior or existing agreements with third-party support organizations, such as Cisco Partners, authorized resellers, or service providers should contact that support organization for guidance and assistance with the appropriate course of action in regards to this advisory.

    The effectiveness of any workaround or fix is dependent on specific customer situations, such as product mix, network topology, traffic behavior, and organizational mission. Due to the variety of affected products and releases, customers should consult with their service provider or support organization to ensure any applied workaround or fix is the most appropriate for use in the intended network before it is deployed.

    Customers without Service Contracts +----------------------------------

    Customers who purchase direct from Cisco but do not hold a Cisco service contract, and customers who purchase through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should acquire upgrades by contacting the Cisco Technical Assistance Center (TAC). TAC contacts are as follows.

    • +1 800 553 2447 (toll free from within North America)
    • +1 408 526 7209 (toll call from anywhere in the world)
    • e-mail: tac@cisco.com

    Customers should have their product serial number available and be prepared to give the URL of this notice as evidence of entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC.

    Refer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml for additional TAC contact information, including localized telephone numbers, and instructions and e-mail addresses for use in various languages.

    Exploitation and Public Announcements

    The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability described in this advisory. Cisco would like to thank Dan Kaminsky for notifying vendors about his findings.

    Note that vulnerability information for Cisco IOS Software is being provided in this advisory outside of the announced publication schedule for Cisco IOS Software described at http://www.cisco.com/go/psirt due to industry-wide disclosure of the vulnerability.

    Status of this Notice: FINAL

    THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.

    A stand-alone copy or Paraphrase of the text of this document that omits the distribution URL in the following section is an uncontrolled copy, and may lack important information or contain factual errors.

    Distribution

    This advisory is posted on Cisco's worldwide website at

    http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml

    In addition to worldwide web posting, a text version of this notice is clear-signed with the Cisco PSIRT PGP key and is posted to the following e-mail and Usenet news recipients.

    • cust-security-announce@cisco.com
    • first-teams@first.org
    • bugtraq@securityfocus.com
    • vulnwatch@vulnwatch.org
    • cisco@spot.colorado.edu
    • cisco-nsp@puck.nether.net
    • full-disclosure@lists.grok.org.uk
    • comp.dcom.sys.cisco@newsgate.cisco.com

    Future updates of this advisory, if any, will be placed on Cisco's worldwide website, but may or may not be actively announced on mailing lists or newsgroups. Users concerned about this problem are encouraged to check the above URL for any updates.

    Revision History

    +-----------------------------------------------------------+ | Revision 1.0 | 2008-July-08 | Initial public release | +-----------------------------------------------------------+

    Cisco Security Procedures

    Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html. This includes instructions for press inquiries regarding Cisco security notices. All Cisco security advisories are available at http://www.cisco.com/go/psirt.

    +-------------------------------------------------------------------- Copyright 2007-2008 Cisco Systems, Inc. All rights reserved. +--------------------------------------------------------------------

    Updated: Jul 08, 2008 Document ID: 107064

    +--------------------------------------------------------------------

    -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux)

    iEYEARECAAYFAkhztUIACgkQ86n/Gc8U/uCAgACfVRRoJO4w4defnpwbNlfgBm4t 2SMAnjKCKECHtsjN9umqqPrPd2DW4IcC =XGZw -----END PGP SIGNATURE----- . This could be used to misdirect users and services; i.e.

    This update provides the latest stable BIND releases for all platforms except Corporate Server/Desktop 3.0 and MNF2, which have been patched to correct the issue.


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447


    Updated Packages:

    Mandriva Linux 2007.1: 73cc24fc9586b7ab290d755012c16a79 2007.1/i586/bind-9.4.2-0.1mdv2007.1.i586.rpm 70867c50cfd64b4406aa002d627d740b 2007.1/i586/bind-devel-9.4.2-0.1mdv2007.1.i586.rpm 3603e9d9115466753397a1f472011703 2007.1/i586/bind-utils-9.4.2-0.1mdv2007.1.i586.rpm cf5e4100ecb21a4eb603831e5a6ec23d 2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm

    Mandriva Linux 2007.1/X86_64: 4eb7ce0984d3ce3befff667392e3bf3e 2007.1/x86_64/bind-9.4.2-0.1mdv2007.1.x86_64.rpm d7b9a9e7d4c52a5b0c54f59ca20bf2d5 2007.1/x86_64/bind-devel-9.4.2-0.1mdv2007.1.x86_64.rpm c5c66c9609615029d2f07f7b09a63118 2007.1/x86_64/bind-utils-9.4.2-0.1mdv2007.1.x86_64.rpm cf5e4100ecb21a4eb603831e5a6ec23d 2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm

    Mandriva Linux 2008.0: 52dfe3970fcd9495b2bb9379a9312b25 2008.0/i586/bind-9.4.2-1mdv2008.0.i586.rpm 97d20d35b6814aa2f9fab549ca6237c0 2008.0/i586/bind-devel-9.4.2-1mdv2008.0.i586.rpm 87a7bb3dd25abd8cd882a8f2fdc2398e 2008.0/i586/bind-utils-9.4.2-1mdv2008.0.i586.rpm da4444a8074e6ede39dfa557fb258db7 2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm

    Mandriva Linux 2008.0/X86_64: b9d0337363bc1e2b14505f25d4ee5f99 2008.0/x86_64/bind-9.4.2-1mdv2008.0.x86_64.rpm 9b75e2a96784c00c2912bc3bf333d089 2008.0/x86_64/bind-devel-9.4.2-1mdv2008.0.x86_64.rpm 0a593b090d9e6bda3666e234056e19ba 2008.0/x86_64/bind-utils-9.4.2-1mdv2008.0.x86_64.rpm da4444a8074e6ede39dfa557fb258db7 2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm

    Mandriva Linux 2008.1: 2534ef007262d4ea2d219bab0190466c 2008.1/i586/bind-9.5.0-3mdv2008.1.i586.rpm c3feee5d05aa3aee14cd70a2d295d0b1 2008.1/i586/bind-devel-9.5.0-3mdv2008.1.i586.rpm f306c06665b723a2530258e6d1dbdae2 2008.1/i586/bind-doc-9.5.0-3mdv2008.1.i586.rpm 967ef80628f92160930bc3a3827a216e 2008.1/i586/bind-utils-9.5.0-3mdv2008.1.i586.rpm 70fc7a7964944a2926979710c5148ed1 2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm

    Mandriva Linux 2008.1/X86_64: 3f4d96d7a7f913c141e1f63cdc7e7336 2008.1/x86_64/bind-9.5.0-3mdv2008.1.x86_64.rpm 420db658366763686198f41394aa72b3 2008.1/x86_64/bind-devel-9.5.0-3mdv2008.1.x86_64.rpm 6f3674f68311494c5a9ff0dbce831e82 2008.1/x86_64/bind-doc-9.5.0-3mdv2008.1.x86_64.rpm 4294b3a086b89bf53c5c967c17962447 2008.1/x86_64/bind-utils-9.5.0-3mdv2008.1.x86_64.rpm 70fc7a7964944a2926979710c5148ed1 2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm

    Corporate 3.0: de2a4372d1c25d73f343c9fcb044c9dd corporate/3.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm 1f24f6dbdb6c02e21cbbef99555049cb corporate/3.0/i586/bind-devel-9.2.3-6.5.C30mdk.i586.rpm 00405b98290d5a41f226081baa57e18d corporate/3.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm 6a237dc290f4f7c463b1996e6a4a4515 corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm

    Corporate 3.0/X86_64: 628162f3d6a414828d2231fefc46842b corporate/3.0/x86_64/bind-9.2.3-6.5.C30mdk.x86_64.rpm dd29ff31a9cffcc1b20fd045869d7013 corporate/3.0/x86_64/bind-devel-9.2.3-6.5.C30mdk.x86_64.rpm c475c1a4d048e04da1fc27dcbb17c3f3 corporate/3.0/x86_64/bind-utils-9.2.3-6.5.C30mdk.x86_64.rpm 6a237dc290f4f7c463b1996e6a4a4515 corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm

    Corporate 4.0: 271ead204904be302d197cd542f5ae23 corporate/4.0/i586/bind-9.3.5-0.4.20060mlcs4.i586.rpm 42413dcc1cf053e735216f767eff4e5d corporate/4.0/i586/bind-devel-9.3.5-0.4.20060mlcs4.i586.rpm 0201afe493a41e1deedc9bf7e9725f4a corporate/4.0/i586/bind-utils-9.3.5-0.4.20060mlcs4.i586.rpm 86bc0cdc9ed1b959b6f56e0660268f2e corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm

    Corporate 4.0/X86_64: b1a18a7d0578dab7bd825eda6c682b3d corporate/4.0/x86_64/bind-9.3.5-0.4.20060mlcs4.x86_64.rpm 6a2ebd550feb9147058de05b1a1ef04d corporate/4.0/x86_64/bind-devel-9.3.5-0.4.20060mlcs4.x86_64.rpm 670a1b934ce4974b8505018ab69ade0b corporate/4.0/x86_64/bind-utils-9.3.5-0.4.20060mlcs4.x86_64.rpm 86bc0cdc9ed1b959b6f56e0660268f2e corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm

    Multi Network Firewall 2.0: 5b694c24cc2092e38f531dbfdd5c9d41 mnf/2.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm c08bc805027059c47bed32215f17eacb mnf/2.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm 39225289516498e1b071c5059306f2b9 mnf/2.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

    All packages are signed by Mandriva for security. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200901-03


                                            http://security.gentoo.org/
    

    Severity: Normal Title: pdnsd: Denial of Service and cache poisoning Date: January 11, 2009 Bugs: #231285 ID: 200901-03


    Synopsis

    Two errors in pdnsd allow for Denial of Service and cache poisoning.

    Affected packages

    -------------------------------------------------------------------
     Package        /  Vulnerable  /                        Unaffected
    -------------------------------------------------------------------
    

    1 net-dns/pdnsd < 1.2.7 >= 1.2.7

    Description

    Two issues have been reported in pdnsd:

    • The p_exec_query() function in src/dns_query.c does not properly handle many entries in the answer section of a DNS reply, related to a "dangling pointer bug" (CVE-2008-4194). The first issue can be exploited by enticing pdnsd to send a query to a malicious DNS server, or using the port randomization weakness, and might lead to a Denial of Service.

    Workaround

    Port randomization can be enabled by setting the "query_port_start" option to 1024 which would resolve the CVE-2008-1447 issue.

    Resolution

    All pdnsd users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-dns/pdnsd-1.2.7"
    

    References

    [ 1 ] CVE-2008-1447 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447 [ 2 ] CVE-2008-4194 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4194

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-200901-03.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

    License

    Copyright 2009 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.5 . Among other things, successful attacks can lead to misdirected web traffic and email rerouting.

    This update changes Debian's dnsmasq packages to implement the recommended countermeasure: UDP query source port randomization. This change increases the size of the space from which an attacker has to guess values in a backwards-compatible fashion and makes successful attacks significantly more difficult.

    This update also switches the random number generator to Dan Bernstein's SURF.

    For the stable distribution (etch), this problem has been fixed in version 2.35-1+etch4. Packages for alpha will be provided later.

    For the unstable distribution (sid), this problem has been fixed in version 2.43-1.

    We recommend that you upgrade your dnsmasq package.

    Upgrade instructions


    wget url will fetch the file for you dpkg -i file.deb will install the referenced file.

    If you are using the apt-get package manager, use the line for sources.list as given below:

    apt-get update will update the internal database apt-get upgrade will install corrected packages

    You may use an automated update by adding the resources from the footer to the proper configuration.

    Debian GNU/Linux 4.0 alias etch


    Stable updates are available for amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

    Source archives:

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc Size/MD5 checksum: 596 3834461c89e55467b4b65ed4ac209e81 http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz Size/MD5 checksum: 252901 ad1fafeaf3442685cfe16613e0f8b777 http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz Size/MD5 checksum: 19202 4ced7768f49198bd43bbbd24f2a3d3e4

    amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb Size/MD5 checksum: 188278 8fb55f694db9fdfccaa86d134e937777

    arm architecture (ARM)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb Size/MD5 checksum: 181746 4caf23f31de937b817e12ade7d132eac

    hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb Size/MD5 checksum: 190490 66730e785683655b058d11aa70346be4

    i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb Size/MD5 checksum: 184546 1fbdd71e81a1e05d68b0f88eaeb00b10

    ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb Size/MD5 checksum: 223758 011f283b71ef0f9e07d5a9dce25db505

    mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb Size/MD5 checksum: 189846 5c67cca2eaedc1dff80c5fd05aa1d33f

    mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb Size/MD5 checksum: 191824 dfd87d69a7751f1e6ef2d0f1ede052ff

    powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb Size/MD5 checksum: 186890 93701abcca5421beddab015a7f35af99

    s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb Size/MD5 checksum: 186396 6f19f6c8d803c3d57e01e73fe1e11886

    sparc architecture (Sun SPARC/UltraSPARC)

    http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb Size/MD5 checksum: 182910 f360078c14f715e90e60124b4ede2be9

    These files will probably be moved into the stable distribution on its next update. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

    SUPPORT COMMUNICATION - SECURITY BULLETIN

    Document ID: c01506861 Version: 3

    HPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning

    NOTICE: The information in this Security Bulletin should be acted upon as soon as possible.

    Release Date: 2008-07-16 Last Updated: 2008-08-06

    Potential Security Impact: Remote DNS cache poisoning

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP-UX running BIND. HP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0, HP-UX B.11.11 running BIND v8.1.2

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2008-1447 (AV:N/AC:L/Au:N/C:P/I:P/A:P) 7.5 =============================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002.

    RESOLUTION

    HP has provided the following software updates / patch to resolve the vulnerabilities for BIND v9.2.0 and BIND v9.3.2.

    Customers running BIND v8.1.2 on HP-UX B.11.11 should upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below.

    The BIND v9.2.0 update is available for download from: ftp://ss080058:ss080058@hprc.external.hp.com

    The patch PHNE_37865 is available from: http://itrc.hp.com

    The BIND v9.3.2 updates are available for download from: http://software.hp.com

    HP-UX Release - B.11.11 running v8.1.2 Action - Upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below

    HP-UX Release - B.11.11 running v9.2.0 BIND Depot name - BIND920v11.depot MD5 Sum - F6999280DE19645EF86FF52083AACD72

    HP-UX Release - B.11.23 running v9.2.0 Action - Install PHNE_37865

    HP-UX Release - B.11.11 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    HP-UX Release - B.11.23 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    HP-UX Release - B.11.31 running v9.3.2 Action - Install revision C.9.3.2.3.0 or subsequent

    Note: HP is aware of performance issues with these updates / patch. All customers should test the updates / patch in their environment. HP is investigating changes to reduce the performance issues. This bulletin will be revised when new updates / patch become available.

    MANUAL ACTIONS: Yes - NonUpdate For B.11.11 running v8.1.2, upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates For B.11.11 running v9.2.0 install BIND920v11.depot

    PRODUCT SPECIFIC INFORMATION HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all HP-issued Security Bulletins and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    AFFECTED VERSIONS

    For BIND v8.1.2 HP-UX B.11.11 ============= InternetSrvcs.INETSVCS-RUN action: upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates

    For BIND v9.3.2 HP-UX B.11.11 ============= BindUpgrade.BIND-UPGRADE action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    HP-UX B.11.23

    BindUpgrade.BIND-UPGRADE BindUpgrade.BIND2-UPGRADE action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    HP-UX B.11.31

    NameService.BIND-AUX NameService.BIND-RUN action: install revision C.9.3.2.3.0 or subsequent URL: http://software.hp.com

    For BIND v9.2.0 HP-UX B.11.11 ============= BINDv920.INETSVCS-BIND action: install revision B.11.11.01.011 or subsequent URL: ftp://ss080058:ss080058@hprc.external.hp.com

    HP-UX B.11.23

    InternetSrvcs.INETSVCS-INETD InternetSrvcs.INETSVCS-RUN InternetSrvcs.INETSVCS2-RUN action: install patch PHNE_37865 or subsequent URL: http://itrc.hp.com

    END AFFECTED VERSIONS

    HISTORY Version:1 (rev.1) - 16 July 2008 Initial release Version:2 (rev.2) - 19 July 2008 Added BIND v9.2.0 depot information Version:3 (rev.3) - 06 August 2008 Updated patch location, revised BIND v9.2.0 depot information, added BIND v8.1.2

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For further information, contact normal HP Services support channel.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com It is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. To get the security-alert PGP key, please send an e-mail message as follows: To: security-alert@hp.com Subject: get key

    Subscribe: To initiate a subscription to receive future HP Security Bulletins via Email: http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&topiccode=ITRC On the web page: ITRC security bulletins and patch sign-up Under Step1: your ITRC security bulletins and patches - check ALL categories for which alerts are required and continue. Under Step2: your ITRC operating systems - verify your operating system selections are checked and save.

    To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php Log in on the web page: Subscriber's choice for Business: sign-in. On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections.

    To review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do

    • The Software Product Category that this Security Bulletin relates to is represented by the 5th and 6th characters of the Bulletin number in the title:

    GN = HP General SW MA = HP Management Agents MI = Misc. 3rd Party SW MP = HP MPE/iX NS = HP NonStop Servers OV = HP OpenVMS PI = HP Printing & Imaging ST = HP Storage SW TL = HP Trusted Linux TU = HP Tru64 UNIX UX = HP-UX VV = HP VirtualVault

    System management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions.

    "HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user's use or disregard of the information provided in this Bulletin.

    Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental, special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. =========================================================== Ubuntu Security Notice USN-622-1 July 08, 2008 bind9 vulnerability CVE-2008-1447 ===========================================================

    A security issue affects the following Ubuntu releases:

    Ubuntu 6.06 LTS Ubuntu 7.04 Ubuntu 7.10 Ubuntu 8.04 LTS

    This advisory also applies to the corresponding versions of Kubuntu, Edubuntu, and Xubuntu.

    The problem can be corrected by upgrading your system to the following package versions:

    Ubuntu 6.06 LTS: libdns21 1:9.3.2-2ubuntu1.5

    Ubuntu 7.04: libdns22 1:9.3.4-2ubuntu2.3

    Ubuntu 7.10: libdns32 1:9.4.1-P1-3ubuntu2

    Ubuntu 8.04 LTS: libdns35 1:9.4.2-10ubuntu0.1

    In general, a standard system upgrade is sufficient to effect the necessary changes.

    Details follow:

    Dan Kaminsky discovered weaknesses in the DNS protocol as implemented by Bind.

    Description

    == Several vulnerabilities in safe level ==

    Multiple errors in the implementation of safe level restrictions can be exploited to call "untrace_var()", perform syslog operations, and modify "$PROGRAM_NAME" at safe level 4, or call insecure methods at safe levels 1 through 3.

    (These vulnerabilities were reported by Keita Yamaguchi.)

    == DoS vulnerability in WEBrick ==

    An error exists in the usage of regular expressions in "WEBrick::HTTPUtils.split_header_value()". This can be exploited to consume large amounts of CPU via a specially crafted HTTP request.

    (This vulnerability was reported by Christian Neukirchen.)

    == Lack of taintness check in dl ==

    An error in "DL" can be exploited to bypass security restrictions and call potentially dangerous functions.

    (This vulnerability was reported by Tanaka Akira.)

    Affected packages:

    Pardus 2008: ruby, all before 1.8.7_p72-16-4 ruby-mode, all before 1.8.7_p72-16-4

    Pardus 2007: ruby, all before 1.8.7_p72-16-13 ruby-mode, all before 1.8.7_p72-16-4

    Resolution

    There are update(s) for ruby, ruby-mode. You can update them via Package Manager or with a single command from console:

    Pardus 2008: pisi up ruby ruby-mode

    Pardus 2007: pisi up ruby ruby-mode

    References

    • http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby
    • http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447
    • http://secunia.com/advisories/31430/

    -- Pınar Yanardağ http://pinguar.org


    Full-Disclosure - We believe in it. There are two ways to deal with this situation:

    1. The documentation included with BIND 9 contains a migration guide. Configure the BIND 8 resolver to forward queries to a BIND 9 resolver. Provided that the network between both resolvers is trusted, this protects the BIND 8 resolver from cache poisoning attacks (to the same degree that the BIND 9 resolver is protected). It is theoretically possible to safely use BIND 8 in this way, but updating to BIND 9 is strongly recommended. BIND 8 (that is, the bind package) will be removed from the etch distribution in a future point release. Scott Kitterman noted that python-dns is vulnerable to this predictability, as it randomizes neither its transaction ID nor its source port. Taken together, this lack of entropy leaves applications using python-dns to perform DNS queries highly susceptible to response forgery.

    Try a new way to discover vulnerabilities that ALREADY EXIST in your IT infrastructure.

    The Full Featured Secunia Network Software Inspector (NSI) is now available: http://secunia.com/network_software_inspector/

    The Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT vulnerabilities in more than 4,000 different Windows applications.


    TITLE: Red Hat update for bind

    SECUNIA ADVISORY ID: SA26195

    VERIFY ADVISORY: http://secunia.com/advisories/26195/

    CRITICAL: Moderately critical

    IMPACT: Spoofing

    WHERE:

    From remote

    OPERATING SYSTEM: Red Hat Enterprise Linux (v. 5 server) http://secunia.com/product/13652/ Red Hat Enterprise Linux Desktop (v. 5 client) http://secunia.com/product/13653/ Red Hat Enterprise Linux Desktop Workstation (v. 5 client) http://secunia.com/product/13651/ RedHat Enterprise Linux AS 2.1 http://secunia.com/product/48/ RedHat Enterprise Linux AS 3 http://secunia.com/product/2534/ RedHat Enterprise Linux AS 4 http://secunia.com/product/4669/ RedHat Enterprise Linux ES 2.1 http://secunia.com/product/1306/ RedHat Enterprise Linux ES 3 http://secunia.com/product/2535/ RedHat Enterprise Linux ES 4 http://secunia.com/product/4668/ RedHat Enterprise Linux WS 3 http://secunia.com/product/2536/ RedHat Enterprise Linux WS 2.1 http://secunia.com/product/1044/ RedHat Enterprise Linux WS 4 http://secunia.com/product/4670/ RedHat Linux Advanced Workstation 2.1 for Itanium http://secunia.com/product/1326/

    DESCRIPTION: Red Hat has issued an update for bind.

    For more information: SA26152

    SOLUTION: Updated packages are available from Red Hat Network. http://rhn.redhat.com

    ORIGINAL ADVISORY: http://rhn.redhat.com/errata/RHSA-2007-0740.html

    OTHER REFERENCES: SA26152: http://secunia.com/advisories/26152/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Security Advisory (08-AUG-2008) (CVE-2008-3280) ===============================================

    Ben Laurie of Google's Applied Security team, while working with an external researcher, Dr. Richard Clayton of the Computer Laboratory, Cambridge University, found that various OpenID Providers (OPs) had TLS Server Certificates that used weak keys, as a result of the Debian Predictable Random Number Generator (CVE-2008-0166).

    In combination with the DNS Cache Poisoning issue (CVE-2008-1447) and the fact that almost all SSL/TLS implementations do not consult CRLs (currently an untracked issue), this means that it is impossible to rely on these OPs.

    Attack Description

    In order to mount an attack against a vulnerable OP, the attacker first finds the private key corresponding to the weak TLS certificate. He then sets up a website masquerading as the original OP, both for the OpenID protocol and also for HTTP/HTTPS.

    There are two cases, one is where the victim is a user trying to identify themselves, in which case, even if they use HTTPS to "ensure" that the site they are visiting is indeed their provider, they will be unable to detect the substitution and will give their login credentials to the attacker.

    The second case is where the victim is the Relying Party (RP). In this case, even if the RP uses TLS to connect to the OP, as is recommended for higher assurance, he will not be defended, as the vast majority of OpenID implementations do not check CRLs, and will, therefore, accept the malicious site as the true OP.

    Mitigation

    Mitigation is surprisingly hard. In theory the vulnerable site should revoke their weak certificate and issue a new one.

    However, since the CRLs will almost certainly not be checked, this means the site will still be vulnerable to attack for the lifetime of the certificate (and perhaps beyond, depending on user behaviour). Note that shutting down the site DOES NOT prevent the attack.

    Therefore mitigation falls to other parties.

    1. Browsers must check CRLs by default.

    2. OpenID libraries must check CRLs.

    3. Until either 1 and 2 or 3 have been done, OpenID cannot be trusted for any OP that cannot demonstrate it has never had a weak certificate.

    Discussion

    Normally, when security problems are encountered with a single piece of software, the responsible thing to do is to is to wait until fixes are available before making any announcement. However, as a number of examples in the past have demonstrated, this approach does not work particularly well when many different pieces of software are involved because it is necessary to coordinate a simultaneous release of the fixes, whilst hoping that the very large number of people involved will cooperate in keeping the vulnerability secret.

    In the present situation, the fixes will involve considerable development work in adding CRL handling to a great many pieces of openID code. This is a far from trivial amount of work.

    The fixes will also involve changes to browser preferences to ensure that CRLs are checked by default -- which many vendors have resisted for years. We are extremely pessimistic that a security vulnerability in OpenID will be seen as sufficiently important to change the browser vendors minds.

    Hence, we see no value in delaying this announcement; and by making the details public as soon as possible, we believe that individuals who rely on OpenID will be better able to take their own individual steps to avoid relying upon the flawed certificates we have identified.

    OpenID is at heart quite a weak protocol, when used in its most general form[1], and consequently there is very limited reliance upon its security. This means that the consequences of the combination of attacks that are now possible is nothing like as serious as might otherwise have been the case.

    However, it does give an insight into the type of security disaster that may occur in the future if we do not start to take CRLs seriously, but merely stick them onto "to-do" lists or disable them in the name of tiny performance improvements.

    Affected Sites

    There is no central registry of OpenID systems, and so we cannot be sure that we have identified all of the weak certificates that are currently being served. The list of those we have found so far is:

    openid.sun.com www.xopenid.net openid.net.nz

    Notes

    [1] There are ways of using OpenID that are significantly more secure than the commonly deployed scheme, I shall describe those in a separate article.


    Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "fujitsu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "internet consortium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "openwall gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 1.6,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "8"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "isc",
            "version": "9.2.9"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "alcatel lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bluecat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "force10",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "funkwerk",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "infoblox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nixu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nominum",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "secure computing network security division",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dnsmasq",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Debian",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2008-1447",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2008-1447",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "NONE",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-31572",
                "impactScore": 2.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:P/A:N",
                "version": "2.0"
              }
            ],
            "cvssV3": [
              {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "author": "nvd@nist.gov",
                "availabilityImpact": "NONE",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 2.2,
                "id": "CVE-2008-1447",
                "impactScore": 4.0,
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "CHANGED",
                "trust": 1.0,
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:N",
                "version": "3.1"
              }
            ],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2008-1447",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#800113",
                "trust": 0.8,
                "value": "27.54"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#252735",
                "trust": 0.8,
                "value": "3.83"
              },
              {
                "author": "VULHUB",
                "id": "VHN-31572",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The DNS protocol, as implemented in (1) BIND 8 and 9 before 9.5.0-P1, 9.4.2-P1, and 9.3.5-P1; (2) Microsoft DNS in Windows 2000 SP4, XP SP2 and SP3, and Server 2003 SP1 and SP2; and other implementations allow remote attackers to spoof DNS traffic via a birthday attack that uses in-bailiwick referrals to conduct cache poisoning against recursive resolvers, related to insufficient randomness of DNS transaction IDs and source ports, aka \"DNS Insufficient Socket Entropy Vulnerability\" or \"the Kaminsky bug.\". Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. ISC (Internet Systems Consortiuim) BIND generates cryptographically weak DNS query IDs which could allow a remote attacker to poison DNS caches. In IP NAT filtering in Sun Solaris 10 and OpenSolaris series products, when a DNS server runs NAT, it incorrectly changes the original address of the data packet. When the destination address is a DNS port, it will allow remote attackers to bypass CVE-2008 -1447 security protection. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nCisco Security Advisory: Multiple Cisco Products Vulnerable to DNS Cache\nPoisoning Attacks\n\nAdvisory ID: cisco-sa-20080708-dns\n\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml\n\nRevision 1.0\n\nFor Public Release 2008 July 08 1800 UTC (GMT)\n\nSummary\n=======\n\nMultiple Cisco products are vulnerable to DNS cache poisoning attacks\ndue to their use of insufficiently randomized DNS transaction IDs and\nUDP source ports in the DNS queries that they produce, which may allow\nan attacker to more easily forge DNS answers that can poison DNS caches. \n\nTo exploit this vulnerability an attacker must be able to cause a\nvulnerable DNS server to perform recursive DNS queries. Therefore, DNS\nservers that are only authoritative, or servers where recursion is not\nallowed, are not affected. \n\nCisco has released free software updates that address this vulnerability. \n\nThis advisory is posted at\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml. \n\nThis security advisory is being published simultaneously with\nannouncements from other affected organizations. \nProducts that process DNS messages with the RD flag set will attempt to\nanswer the question asked on behalf of the client. A product is only\naffected if using a vulnerable implementation of the DNS protocol, the\nDNS server functionality for the product is enabled, and the DNS feature\nfor the product is configured to process recursive DNS query messages. \n\nVulnerable Products\n+------------------\n\nThe following Cisco products are capable of acting as DNS servers and\nhave been found to have the DNS implementation weakness that makes some\ntypes of DNS cache poisoning attacks more likely to succeed:\n\n  * Cisco IOS Software\n\n    A device that is running Cisco IOS Software will be affected if it\n    is running a vulnerable version and if it is acting as a DNS server. \n\n    All Cisco IOS Software releases that support the DNS server\n    functionality and that have not had their DNS implementation\n    improved are affected. For information about specific fixed\n    versions, please refer to the Software Versions and Fixes section. \n\n    A device that is running Cisco IOS Software is configured to act\n    as a DNS server if the command \"ip dns server\" is present in the\n    configuration. This command is not enabled by default. \n\n  * Cisco Network Registrar\n\n    All Cisco Network Registrar versions are affected, and DNS services\n    are enabled by default. \n\n    The DNS server on CNR is enabled via the command-line interface\n    (CLI) commands \"server dns enable start-on-reboot\" or \"dns enable\n    start-on-reboot\" or via the web management interface in the Servers\n    page by selecting the appropriate \"Start,\" \"Stop,\" or \"Reload\"\n    button. \n\n  * Cisco Application and Content Networking System\n\n    All Cisco Application and Content Networking System (ACNS) versions\n    are affected; DNS services are disabled by default. \n\n    ACNS is configured to act as a DNS server if the command\n    \"dns enable\" is present in the configuration. \n\n  * Cisco Global Site Selector Used in Combination with Cisco Network\n    Registrar\n\n    The Cisco Global Site Selector (GSS) is affected when it is used in\n    combination with Cisco Network Registrar software to provide a more\n    complete DNS solution. Fixed software would come in the form of an\n    update of the Cisco Network Registrar software rather than an update\n    of the GSS software. \n\nProducts Confirmed Not Vulnerable\n+--------------------------------\n\nProducts that do not offer DNS server capabilities are not affected by\nthis vulnerability. \n\nThe Cisco GSS by itself is not affected by this vulnerability. However,\nit is affected when it is used with Cisco Network Registrar software. \n\nNo other Cisco products are currently known to be affected by these\nvulnerabilities. \n\nDetails\n=======\n\nThe Domain Name System is an integral part of networks that are based\non TCP/IP such as the Internet. Simply stated, the Domain Name System\nis a hierarchical database that contains mappings of hostnames and IP\naddresses. When handling\na query from a DNS client, a DNS server can look into its portion of the\nglobal DNS database (if the query is for a portion of the DNS database\nfor which the DNS server is authoritative), or it can relay the query\nto other DNS servers (if it is configured to do so and if the query\nis for a portion of the DNS database for which the DNS server is not\nauthoritative.)\n\nBecause of the processing time and bandwidth that is associated with\nhandling a DNS query, most DNS servers locally store responses that\nare received from other DNS servers. The area where these responses\nare stored locally is called a \"cache.\" Once a response is stored in a\ncache, the DNS server can use the locally stored response for a certain\ntime (called the \"time to live\") before having to query DNS servers\nagain to refresh the local (cached) copy of the response. For\nexample, if www.example.com is mapped to the IP address 192.168.0.1\nand this mapping is present in the cache of a DNS server, an attacker\nwho succeeds in poisoning the DNS cache of this server may be able to\nmap www.example.com to 10.0.0.1 instead. If this happens, a user who\nis trying to visit www.example.com may end up contacting the wrong web\nserver. The fundamental implementation\nweakness is that the DNS transaction ID and source port number used to\nvalidate DNS responses are not sufficiently randomized and can easily\nbe predicted, which allows an attacker to create forged responses to\nDNS queries that will match the expected values. The DNS server will\nconsider such responses to be valid. \n\nThe following Cisco products that offer DNS server functionality have\nbeen found to be susceptible to DNS cache poisoning attacks:\n\n  * Cisco IOS Software: The vulnerability documented in Cisco bug ID\n    CSCso81854. \n\n  * Cisco Network Registrar: The vulnerability documented in Cisco\n    bug ID CSCsq01298. \n\n  * Cisco Application and Content Networking System (ACNS): The\n    vulnerability documented in Cisco bug ID CSCsq21930. \n\nThis vulnerability has been assigned Common Vulnerabilities and\nExposures (CVE) ID CVE-2008-1447. \n\nVulnerability Scoring Details\n+----------------------------\n\nCisco has provided scores for the vulnerabilities in this advisory based\non the Common Vulnerability Scoring System (CVSS). The CVSS scoring in\nthis Security Advisory is done in accordance with CVSS version 2.0. \n\nCVSS is a standards-based scoring method that conveys vulnerability\nseverity and helps determine urgency and priority of response. \n\nCisco has provided a base and temporal score. Customers can then\ncompute environmental scores to assist in determining the impact of the\nvulnerability in individual networks. \n\nCisco has provided an FAQ to answer additional questions regarding CVSS\nat\n\nhttp://www.cisco.com/web/about/security/intelligence/cvss-qandas.html\n\nCisco has also provided a CVSS calculator to help compute the\nenvironmental impact for individual networks at\n\nhttp://intellishield.cisco.com/security/alertmanager/cvss\n\nCisco Bugs:\n\n* DNS cache prone to poisoning/forged answers attacks (CSCsq21930)\n\n* DNS susceptible to forged query response attacks (CSCsq01298)\n\n* Need to make DNS implementation more resilient against forged answers\n(CSCso81854)\n\nCVSS Base Score - 6.4\n    Access Vector -            Network\n    Access Complexity -        Low\n    Authentication -           None\n    Confidentiality Impact -   None\n    Integrity Impact -         Partial\n    Availability Impact -      Partial\n\nCVSS Temporal Score - 5.3\n    Exploitability -           Functional\n    Remediation Level -        Official-Fix\n    Report Confidence -        Confirmed\n\n(same score for the three Cisco bugs listed above.)\n\nImpact\n======\n\nSuccessful exploitation of the vulnerability described in this document\nmay result in invalid hostname-to-IP address mappings in the cache of an\naffected DNS server. This may lead users of this DNS server to contact\nthe wrong provider of network services. The ultimate impact varies\ngreatly, ranging from a simple denial of service (for example, making\nwww.example.com resolve to 127.0.0.1) to phishing and financial fraud. \n\nSoftware Versions and Fixes\n===========================\n\nWhen considering software upgrades, also consult\nhttp://www.cisco.com/go/psirt and any subsequent advisories to determine\nexposure and a complete upgrade solution. \n\nIn all cases, customers should exercise caution to be certain the\ndevices to be upgraded contain sufficient memory and that current\nhardware and software configurations will continue to be supported\nproperly by the new release. If the information is not clear, contact\nthe Cisco Technical Assistance Center (TAC) or your contracted\nmaintenance provider for assistance. \n\nCisco IOS Software\n+-----------------\n\nEach row of the Cisco IOS Software table (below) names a Cisco IOS\nSoftware release train. If a given release train is vulnerable, then\nthe earliest possible releases that contain the fix (along with the\nanticipated date of availability for each, if applicable) are listed in\nthe \"First Fixed Release\" column of the table. The \"Recommended Release\"\ncolumn indicates the releases which have fixes for all the published\nvulnerabilities at the time of this Advisory. A device running a release\nin the given train that is earlier than the release in a specific column\n(less than the First Fixed Release) is known to be vulnerable. Cisco\nrecommends upgrading to a release equal to or later than the release in\nthe \"Recommended Releases\" column of the table. \n\n+----------------------------------------+\n|   Major    |        Availability of    |\n|  Release   |     Repaired Releases     |\n|------------+---------------------------|\n|  Affected  | First Fixed | Recommended |\n| 12.0-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n| 12.0       | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)DB   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0DB     | release     |             |\n|            | 12.0(7)DB   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)DC   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0DC     | release     |             |\n|            | 12.0(7)DC   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0S      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0ST     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0SZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.0T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.0W      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0WC     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.0WT     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XE1  |             |\n|            | are         |             |\n| 12.0XE     | vulnerable, |             |\n|            | release     |             |\n|            | 12.0(7)XE1  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.0XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XK2  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0XK     | release     |             |\n|            | 12.0(7)XK2  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0XL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.0(7)XR1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.0XR     | release     |             |\n|            | 12.0(7)XR1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.0XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.0XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.1-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.1       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.1AA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1AX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(22)AY1 |             |\n|            | are         |             |\n| 12.1AY     | vulnerable, | 12.1(22)    |\n|            | release     | EA11        |\n|            | 12.1(22)AY1 |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1AZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1CX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(4)DB1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1DB     | release     |             |\n|            | 12.1(4)DB1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(4)DC2  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1DC     | release     |             |\n|            | 12.1(4)DC2  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.1E      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(11)EA1 |             |\n|            | are         |             |\n| 12.1EA     | vulnerable, | 12.1(22)    |\n|            | release     | EA11        |\n|            | 12.1(11)EA1 |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1EB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(8a)EX  |             |\n|            | are         |             |\n| 12.1EX     | vulnerable, |             |\n|            | release     |             |\n|            | 12.1(8a)EX  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1EY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1EZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1GA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1GB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.1T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.1XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(1)XC1  |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.1XC     | release     |             |\n|            | 12.1(1)XC1  | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.1XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XT     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1XZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Note:       |             |\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.1(5)YE1  |             |\n|            | are         | 12.4(19a)   |\n| 12.1YE     | vulnerable, |             |\n|            | release     | 12.4(19b)   |\n|            | 12.1(5)YE1  |             |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.1YF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.1YJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.2-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2B      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2BC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2BW     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.2(8)BY   |             |\n|            | are         |             |\n|            | vulnerable, | 12.4(19a)   |\n| 12.2BY     | release     |             |\n|            | 12.2(8)BY   | 12.4(19b)   |\n|            | and later   |             |\n|            | are not     |             |\n|            | vulnerable; |             |\n|            | first fixed |             |\n|            | in 12.4     |             |\n|------------+-------------+-------------|\n| 12.2BZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2CZ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.2DA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2DD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2DX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EWA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2EZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2FZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2IXF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2MB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2MC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2S      | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SBC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SCA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SED    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SEG    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SGA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SRC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SVD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXD    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXE    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXF    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXH    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SXI    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2SZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.2(8)     |             |\n|            | TPC10d are  |             |\n|            | vulnerable, |             |\n| 12.2TPC    | release     |             |\n|            | 12.2(8)     |             |\n|            | TPC10d and  |             |\n|            | later are   |             |\n|            | not         |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.2UZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XC     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XG     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XI     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XK     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XL     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XM     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XN     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XNA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XO     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XT     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2XU     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2XV     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2XW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YB     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YD     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YE     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YH     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YJ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2YK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YL     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YM     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YN     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.2(18)    |\n|            | migrate to  | SXF15;      |\n| 12.2YO     | any release | Available   |\n|            | in 12.2SY   | on          |\n|            |             | 08-AUG-08   |\n|------------+-------------+-------------|\n| 12.2YP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YR     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YS     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YT     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YU     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2YV     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2YW     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2YZ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.2ZC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZD     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZE     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZF     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZG     | first fixed |             |\n|            | in 12.4T    | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZH     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.2ZJ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.2ZL     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.2ZP     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.2ZYA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.3-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3       | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3B      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3BC     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3BW     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3EU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JEC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JL     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.3JX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3T      | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3TPC    | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.3VA     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XA     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XB     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XC     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XD     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XE     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XF     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XG     | first fixed |             |\n|            | in 12.4T    | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XH     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3XI     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3XJ     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XK     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XQ     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3XR     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(19a)   |\n| 12.3XS     | first fixed |             |\n|            | in 12.4     | 12.4(19b)   |\n|------------+-------------+-------------|\n| 12.3XU     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3XW     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.3XY     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            |             | 12.4(19a)   |\n|            |             |             |\n|            | Vulnerable; | 12.4(19b)   |\n| 12.3YA     | first fixed |             |\n|            | in 12.4     | 12.4(20)T;  |\n|            |             | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YD     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            |             | 12.3(14)    |\n|            |             | YX12        |\n|            | Vulnerable; |             |\n| 12.3YF     | first fixed | 12.4(20)T;  |\n|            | in 12.3YX   | Available   |\n|            |             | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YG     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YH     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YI     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.3YJ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YK     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Releases    |             |\n|            | prior to    |             |\n|            | 12.3(14)    |             |\n|            | YM12 are    |             |\n|            | vulnerable, | 12.3(14)    |\n| 12.3YM     | release     | YM12        |\n|            | 12.3(14)    |             |\n|            | YM12 and    |             |\n|            | later are   |             |\n|            | not         |             |\n|            | vulnerable; |             |\n|------------+-------------+-------------|\n| 12.3YQ     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YS     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.3YT     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n|            | Vulnerable; |             |\n| 12.3YU     | first fixed |             |\n|            | in 12.4XB   |             |\n|------------+-------------+-------------|\n| 12.3YX     | 12.3(14)    | 12.3(14)    |\n|            | YX12        | YX12        |\n|------------+-------------+-------------|\n| 12.3YZ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|  Affected  | First Fixed | Recommended |\n| 12.4-Based |   Release   |   Release   |\n|  Releases  |             |             |\n|------------+-------------+-------------|\n|            | 12.4(18b)   |             |\n|            |             |             |\n|            | 12.4(19a)   | 12.4(19a)   |\n| 12.4       |             |             |\n|            | 12.4(19b)   | 12.4(19b)   |\n|            |             |             |\n|            | 12.4(21)    |             |\n|------------+-------------+-------------|\n| 12.4JA     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMA    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMB    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JMC    | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4JX     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4MD     | 12.4(15)MD  | 12.4(15)MD  |\n|------------+-------------+-------------|\n| 12.4MR     | 12.4(19)MR  | 12.4(19)MR  |\n|------------+-------------+-------------|\n| 12.4SW     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | 12.4(15)T6  |             |\n|            |             | 12.4(20)T;  |\n| 12.4T      | 12.4(20)T;  | Available   |\n|            | Available   | on          |\n|            | on          | 11-JUL-08   |\n|            | 11-JUL-08   |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XA     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XB     | 12.4(2)XB10 |             |\n|------------+-------------+-------------|\n| 12.4XC     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n|            | 12.4(4)     | 12.4(20)T;  |\n|            | XD11;       | Available   |\n| 12.4XD     | Available   | on          |\n|            | on          | 11-JUL-08   |\n|            | 31-JUL-08   |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XE     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XF     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4XG     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XJ     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n|------------+-------------+-------------|\n| 12.4XK     | Not         |             |\n|            | Vulnerable  |             |\n|------------+-------------+-------------|\n| 12.4XL     | 12.4(15)XL2 | 12.4(15)XL2 |\n|------------+-------------+-------------|\n| 12.4XM     | 12.4(15)XM1 | 12.4(15)XM1 |\n|------------+-------------+-------------|\n| 12.4XN     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XQ     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XT     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XV     | Vulnerable; |             |\n|            | contact TAC |             |\n|------------+-------------+-------------|\n| 12.4XW     | 12.4(11)XW8 | 12.4(11)XW6 |\n|------------+-------------+-------------|\n| 12.4XY     | 12.4(15)XY3 |             |\n|------------+-------------+-------------|\n|            | Vulnerable; | 12.4(20)T;  |\n| 12.4XZ     | first fixed | Available   |\n|            | in 12.4T    | on          |\n|            |             | 11-JUL-08   |\n+----------------------------------------+\n\nCisco Network Registrar\n+----------------------\n\n+---------------------------------------+\n|   Affected   |                        |\n|   Release    |  First Fixed Release   |\n|    Train     |                        |\n|--------------+------------------------|\n| 6.1.x        | Contact TAC            |\n|--------------+------------------------|\n|              | 6.3.1.1 patch;         |\n| 6.3.x        | available mid-July     |\n|              | 2008                   |\n|--------------+------------------------|\n| 7.0.x        | 7.0.1; available in    |\n|              | mid-July 2008          |\n+---------------------------------------+\n\nCisco Network Registrar software is available for download at:\n\nhttp://www.cisco.com/pcgi-bin/Software/Tablebuild/tablebuild.pl/nr-eval\n\nCisco Application and Content Networking System\n+----------------------------------------------\n\nThis issue is fixed in version 5.5.11 of Cisco ACNS software. This\nrelease will be available for download from www.cisco.com in late July\n2008. \n\nCisco ACNS 5.5 software is available for download at:\n\nhttp://www.cisco.com/pcgi-bin/tablebuild.pl/acns55\n\nWorkarounds\n===========\n\nThere are no workarounds. \n\nAdditional information about identification and mitigation of attacks\nagainst DNS is in the Cisco Applied Intelligence white paper \"DNS Best\nPractices, Network Protections, and Attack Identification,\" available at\nhttp://www.cisco.com/web/about/security/intelligence/dns-bcp.html. \n\nObtaining Fixed Software\n========================\n\nCisco has released free software updates that address these\nvulnerabilities. Prior to deploying software, customers should consult\ntheir maintenance provider or check the software for feature set\ncompatibility and known issues specific to their environment. \n\nCustomers may only install and expect support for the feature sets\nthey have purchased. By installing, downloading, accessing or\notherwise using such software upgrades, customers agree to be bound\nby the terms of Cisco\u0027s software license terms found at\nhttp://www.cisco.com/en/US/products/prod_warranties_item09186a008088e31f.html,\nor as otherwise set forth at Cisco.com Downloads at\nhttp://www.cisco.com/public/sw-center/sw-usingswc.shtml. \n\nDo not contact psirt@cisco.com or security-alert@cisco.com for software\nupgrades. \n\nCustomers with Service Contracts\n+-------------------------------\n\nCustomers with contracts should obtain upgraded software through their\nregular update channels. For most customers, this means that upgrades\nshould be obtained through the Software Center on Cisco\u0027s worldwide\nwebsite at http://www.cisco.com. \n\nCustomers using Third Party Support Organizations\n+------------------------------------------------\n\nCustomers whose Cisco products are provided or maintained through prior\nor existing agreements with third-party support organizations, such\nas Cisco Partners, authorized resellers, or service providers should\ncontact that support organization for guidance and assistance with the\nappropriate course of action in regards to this advisory. \n\nThe effectiveness of any workaround or fix is dependent on specific\ncustomer situations, such as product mix, network topology, traffic\nbehavior, and organizational mission. Due to the variety of affected\nproducts and releases, customers should consult with their service\nprovider or support organization to ensure any applied workaround or fix\nis the most appropriate for use in the intended network before it is\ndeployed. \n\nCustomers without Service Contracts\n+----------------------------------\n\nCustomers who purchase direct from Cisco but do not hold a Cisco service\ncontract, and customers who purchase through third-party vendors but are\nunsuccessful in obtaining fixed software through their point of sale\nshould acquire upgrades by contacting the Cisco Technical Assistance\nCenter (TAC). TAC contacts are as follows. \n\n  * +1 800 553 2447 (toll free from within North America)\n  * +1 408 526 7209 (toll call from anywhere in the world)\n  * e-mail: tac@cisco.com\n\nCustomers should have their product serial number available and be\nprepared to give the URL of this notice as evidence of entitlement to a\nfree upgrade. Free upgrades for non-contract customers must be requested\nthrough the TAC. \n\nRefer to http://www.cisco.com/warp/public/687/Directory/DirTAC.shtml\nfor additional TAC contact information, including localized telephone\nnumbers, and instructions and e-mail addresses for use in various\nlanguages. \n\nExploitation and Public Announcements\n=====================================\n\nThe Cisco PSIRT is not aware of any public announcements or malicious\nuse of the vulnerability described in this advisory. Cisco would like to\nthank Dan Kaminsky for notifying vendors about his findings. \n\nNote that vulnerability information for Cisco IOS Software is being\nprovided in this advisory outside of the announced publication schedule\nfor Cisco IOS Software described at http://www.cisco.com/go/psirt due to\nindustry-wide disclosure of the vulnerability. \n\nStatus of this Notice: FINAL\n============================\n\nTHIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY\nANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF\nMERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE\nINFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS\nAT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS\nDOCUMENT AT ANY TIME. \n\nA stand-alone copy or Paraphrase of the text of this document that omits\nthe distribution URL in the following section is an uncontrolled copy,\nand may lack important information or contain factual errors. \n\nDistribution\n============\n\nThis advisory is posted on Cisco\u0027s worldwide website at\n\nhttp://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml\n\nIn addition to worldwide web posting, a text version of this notice is\nclear-signed with the Cisco PSIRT PGP key and is posted to the following\ne-mail and Usenet news recipients. \n\n  * cust-security-announce@cisco.com\n  * first-teams@first.org\n  * bugtraq@securityfocus.com\n  * vulnwatch@vulnwatch.org\n  * cisco@spot.colorado.edu\n  * cisco-nsp@puck.nether.net\n  * full-disclosure@lists.grok.org.uk\n  * comp.dcom.sys.cisco@newsgate.cisco.com\n\nFuture updates of this advisory, if any, will be placed on Cisco\u0027s\nworldwide website, but may or may not be actively announced on mailing\nlists or newsgroups. Users concerned about this problem are encouraged\nto check the above URL for any updates. \n\nRevision History\n================\n\n+-----------------------------------------------------------+\n| Revision 1.0  | 2008-July-08  | Initial public release    |\n+-----------------------------------------------------------+\n\nCisco Security Procedures\n=========================\n\nComplete information on reporting security vulnerabilities in\nCisco products, obtaining assistance with security incidents, and\nregistering to receive security information from Cisco, is available\non Cisco\u0027s worldwide website at\nhttp://www.cisco.com/en/US/products/products_security_vulnerability_policy.html. \nThis includes instructions for press inquiries regarding Cisco security\nnotices. All Cisco security advisories are available at\nhttp://www.cisco.com/go/psirt. \n\n+--------------------------------------------------------------------\nCopyright 2007-2008 Cisco Systems, Inc. All rights reserved. \n+--------------------------------------------------------------------\n\nUpdated: Jul 08, 2008                             Document ID: 107064\n\n+--------------------------------------------------------------------\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (GNU/Linux)\n\niEYEARECAAYFAkhztUIACgkQ86n/Gc8U/uCAgACfVRRoJO4w4defnpwbNlfgBm4t\n2SMAnjKCKECHtsjN9umqqPrPd2DW4IcC\n=XGZw\n-----END PGP SIGNATURE-----\n.  This could be used to misdirect users and services;\n i.e. \n \n This update provides the latest stable BIND releases for all platforms\n except Corporate Server/Desktop 3.0 and MNF2, which have been patched\n to correct the issue. \n _______________________________________________________________________\n\n References:\n \n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n _______________________________________________________________________\n \n Updated Packages:\n \n Mandriva Linux 2007.1:\n 73cc24fc9586b7ab290d755012c16a79  2007.1/i586/bind-9.4.2-0.1mdv2007.1.i586.rpm\n 70867c50cfd64b4406aa002d627d740b  2007.1/i586/bind-devel-9.4.2-0.1mdv2007.1.i586.rpm\n 3603e9d9115466753397a1f472011703  2007.1/i586/bind-utils-9.4.2-0.1mdv2007.1.i586.rpm \n cf5e4100ecb21a4eb603831e5a6ec23d  2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm\n\n Mandriva Linux 2007.1/X86_64:\n 4eb7ce0984d3ce3befff667392e3bf3e  2007.1/x86_64/bind-9.4.2-0.1mdv2007.1.x86_64.rpm\n d7b9a9e7d4c52a5b0c54f59ca20bf2d5  2007.1/x86_64/bind-devel-9.4.2-0.1mdv2007.1.x86_64.rpm\n c5c66c9609615029d2f07f7b09a63118  2007.1/x86_64/bind-utils-9.4.2-0.1mdv2007.1.x86_64.rpm \n cf5e4100ecb21a4eb603831e5a6ec23d  2007.1/SRPMS/bind-9.4.2-0.1mdv2007.1.src.rpm\n\n Mandriva Linux 2008.0:\n 52dfe3970fcd9495b2bb9379a9312b25  2008.0/i586/bind-9.4.2-1mdv2008.0.i586.rpm\n 97d20d35b6814aa2f9fab549ca6237c0  2008.0/i586/bind-devel-9.4.2-1mdv2008.0.i586.rpm\n 87a7bb3dd25abd8cd882a8f2fdc2398e  2008.0/i586/bind-utils-9.4.2-1mdv2008.0.i586.rpm \n da4444a8074e6ede39dfa557fb258db7  2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm\n\n Mandriva Linux 2008.0/X86_64:\n b9d0337363bc1e2b14505f25d4ee5f99  2008.0/x86_64/bind-9.4.2-1mdv2008.0.x86_64.rpm\n 9b75e2a96784c00c2912bc3bf333d089  2008.0/x86_64/bind-devel-9.4.2-1mdv2008.0.x86_64.rpm\n 0a593b090d9e6bda3666e234056e19ba  2008.0/x86_64/bind-utils-9.4.2-1mdv2008.0.x86_64.rpm \n da4444a8074e6ede39dfa557fb258db7  2008.0/SRPMS/bind-9.4.2-1mdv2008.0.src.rpm\n\n Mandriva Linux 2008.1:\n 2534ef007262d4ea2d219bab0190466c  2008.1/i586/bind-9.5.0-3mdv2008.1.i586.rpm\n c3feee5d05aa3aee14cd70a2d295d0b1  2008.1/i586/bind-devel-9.5.0-3mdv2008.1.i586.rpm\n f306c06665b723a2530258e6d1dbdae2  2008.1/i586/bind-doc-9.5.0-3mdv2008.1.i586.rpm\n 967ef80628f92160930bc3a3827a216e  2008.1/i586/bind-utils-9.5.0-3mdv2008.1.i586.rpm \n 70fc7a7964944a2926979710c5148ed1  2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm\n\n Mandriva Linux 2008.1/X86_64:\n 3f4d96d7a7f913c141e1f63cdc7e7336  2008.1/x86_64/bind-9.5.0-3mdv2008.1.x86_64.rpm\n 420db658366763686198f41394aa72b3  2008.1/x86_64/bind-devel-9.5.0-3mdv2008.1.x86_64.rpm\n 6f3674f68311494c5a9ff0dbce831e82  2008.1/x86_64/bind-doc-9.5.0-3mdv2008.1.x86_64.rpm\n 4294b3a086b89bf53c5c967c17962447  2008.1/x86_64/bind-utils-9.5.0-3mdv2008.1.x86_64.rpm \n 70fc7a7964944a2926979710c5148ed1  2008.1/SRPMS/bind-9.5.0-3mdv2008.1.src.rpm\n\n Corporate 3.0:\n de2a4372d1c25d73f343c9fcb044c9dd  corporate/3.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm\n 1f24f6dbdb6c02e21cbbef99555049cb  corporate/3.0/i586/bind-devel-9.2.3-6.5.C30mdk.i586.rpm\n 00405b98290d5a41f226081baa57e18d  corporate/3.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm \n 6a237dc290f4f7c463b1996e6a4a4515  corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n\n Corporate 3.0/X86_64:\n 628162f3d6a414828d2231fefc46842b  corporate/3.0/x86_64/bind-9.2.3-6.5.C30mdk.x86_64.rpm\n dd29ff31a9cffcc1b20fd045869d7013  corporate/3.0/x86_64/bind-devel-9.2.3-6.5.C30mdk.x86_64.rpm\n c475c1a4d048e04da1fc27dcbb17c3f3  corporate/3.0/x86_64/bind-utils-9.2.3-6.5.C30mdk.x86_64.rpm \n 6a237dc290f4f7c463b1996e6a4a4515  corporate/3.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n\n Corporate 4.0:\n 271ead204904be302d197cd542f5ae23  corporate/4.0/i586/bind-9.3.5-0.4.20060mlcs4.i586.rpm\n 42413dcc1cf053e735216f767eff4e5d  corporate/4.0/i586/bind-devel-9.3.5-0.4.20060mlcs4.i586.rpm\n 0201afe493a41e1deedc9bf7e9725f4a  corporate/4.0/i586/bind-utils-9.3.5-0.4.20060mlcs4.i586.rpm \n 86bc0cdc9ed1b959b6f56e0660268f2e  corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm\n\n Corporate 4.0/X86_64:\n b1a18a7d0578dab7bd825eda6c682b3d  corporate/4.0/x86_64/bind-9.3.5-0.4.20060mlcs4.x86_64.rpm\n 6a2ebd550feb9147058de05b1a1ef04d  corporate/4.0/x86_64/bind-devel-9.3.5-0.4.20060mlcs4.x86_64.rpm\n 670a1b934ce4974b8505018ab69ade0b  corporate/4.0/x86_64/bind-utils-9.3.5-0.4.20060mlcs4.x86_64.rpm \n 86bc0cdc9ed1b959b6f56e0660268f2e  corporate/4.0/SRPMS/bind-9.3.5-0.4.20060mlcs4.src.rpm\n\n Multi Network Firewall 2.0:\n 5b694c24cc2092e38f531dbfdd5c9d41  mnf/2.0/i586/bind-9.2.3-6.5.C30mdk.i586.rpm\n c08bc805027059c47bed32215f17eacb  mnf/2.0/i586/bind-utils-9.2.3-6.5.C30mdk.i586.rpm \n 39225289516498e1b071c5059306f2b9  mnf/2.0/SRPMS/bind-9.2.3-6.5.C30mdk.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 200901-03\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n  Severity: Normal\n     Title: pdnsd: Denial of Service and cache poisoning\n      Date: January 11, 2009\n      Bugs: #231285\n        ID: 200901-03\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nTwo errors in pdnsd allow for Denial of Service and cache poisoning. \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package        /  Vulnerable  /                        Unaffected\n    -------------------------------------------------------------------\n  1  net-dns/pdnsd       \u003c 1.2.7                              \u003e= 1.2.7\n\nDescription\n===========\n\nTwo issues have been reported in pdnsd:\n\n* The p_exec_query() function in src/dns_query.c does not properly\n  handle many entries in the answer section of a DNS reply, related to\n  a \"dangling pointer bug\" (CVE-2008-4194). The first issue\ncan be exploited by enticing pdnsd to send a query to a malicious DNS\nserver, or using the port randomization weakness, and might lead to a\nDenial of Service. \n\nWorkaround\n==========\n\nPort randomization can be enabled by setting the \"query_port_start\"\noption to 1024 which would resolve the CVE-2008-1447 issue. \n\nResolution\n==========\n\nAll pdnsd users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose \"\u003e=net-dns/pdnsd-1.2.7\"\n\nReferences\n==========\n\n  [ 1 ] CVE-2008-1447\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n  [ 2 ] CVE-2008-4194\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4194\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  http://security.gentoo.org/glsa/glsa-200901-03.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttp://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2009 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.5\n. Among other things,\nsuccessful attacks can lead to misdirected web traffic and email\nrerouting. \n\nThis update changes Debian\u0027s dnsmasq packages to implement the\nrecommended countermeasure: UDP query source port randomization. This\nchange increases the size of the space from which an attacker has to\nguess values in a backwards-compatible fashion and makes successful\nattacks significantly more difficult. \n\nThis update also switches the random number generator to Dan\nBernstein\u0027s SURF. \n\nFor the stable distribution (etch), this problem has been fixed in\nversion 2.35-1+etch4. Packages for alpha will be provided later. \n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 2.43-1. \n\nWe recommend that you upgrade your dnsmasq package. \n\nUpgrade instructions\n- --------------------\n\nwget url\n        will fetch the file for you\ndpkg -i file.deb\n        will install the referenced file. \n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n        will update the internal database\napt-get upgrade\n        will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration. \n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\nStable updates are available for amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. \n\nSource archives:\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc\n    Size/MD5 checksum:      596 3834461c89e55467b4b65ed4ac209e81\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz\n    Size/MD5 checksum:   252901 ad1fafeaf3442685cfe16613e0f8b777\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz\n    Size/MD5 checksum:    19202 4ced7768f49198bd43bbbd24f2a3d3e4\n\namd64 architecture (AMD x86_64 (AMD64))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb\n    Size/MD5 checksum:   188278 8fb55f694db9fdfccaa86d134e937777\n\narm architecture (ARM)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb\n    Size/MD5 checksum:   181746 4caf23f31de937b817e12ade7d132eac\n\nhppa architecture (HP PA RISC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb\n    Size/MD5 checksum:   190490 66730e785683655b058d11aa70346be4\n\ni386 architecture (Intel ia32)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb\n    Size/MD5 checksum:   184546 1fbdd71e81a1e05d68b0f88eaeb00b10\n\nia64 architecture (Intel ia64)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb\n    Size/MD5 checksum:   223758 011f283b71ef0f9e07d5a9dce25db505\n\nmips architecture (MIPS (Big Endian))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb\n    Size/MD5 checksum:   189846 5c67cca2eaedc1dff80c5fd05aa1d33f\n\nmipsel architecture (MIPS (Little Endian))\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb\n    Size/MD5 checksum:   191824 dfd87d69a7751f1e6ef2d0f1ede052ff\n\npowerpc architecture (PowerPC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb\n    Size/MD5 checksum:   186890 93701abcca5421beddab015a7f35af99\n\ns390 architecture (IBM S/390)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb\n    Size/MD5 checksum:   186396 6f19f6c8d803c3d57e01e73fe1e11886\n\nsparc architecture (Sun SPARC/UltraSPARC)\n\n  http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb\n    Size/MD5 checksum:   182910 f360078c14f715e90e60124b4ede2be9\n\n\n  These files will probably be moved into the stable distribution on\n  its next update. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\nSUPPORT COMMUNICATION - SECURITY BULLETIN\n\nDocument ID: c01506861\nVersion: 3\n\nHPSBUX02351 SSRT080058 rev.3 - HP-UX Running BIND, Remote DNS Cache Poisoning\n\nNOTICE: The information in this Security Bulletin should be acted upon as soon as possible. \n\nRelease Date: 2008-07-16\nLast Updated: 2008-08-06\n\nPotential Security Impact: Remote DNS cache poisoning\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP-UX running BIND. \nHP-UX B.11.11, B.11.23, B.11.31 running BIND v9.3.2 or BIND v9.2.0, HP-UX B.11.11 running BIND v8.1.2 \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics \n===============================================\nReference                         Base Vector               Base Score \nCVE-2008-1447      (AV:N/AC:L/Au:N/C:P/I:P/A:P)     7.5\n===============================================\nInformation on CVSS is documented in HP Customer Notice: HPSN-2008-002. \n\nRESOLUTION\n\nHP has provided the following software updates / patch to resolve the vulnerabilities for BIND v9.2.0 and BIND v9.3.2. \n\nCustomers running BIND v8.1.2 on HP-UX B.11.11 should upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below. \n\nThe BIND v9.2.0 update is available for download from: ftp://ss080058:ss080058@hprc.external.hp.com \n\nThe patch PHNE_37865 is available from: http://itrc.hp.com \n\nThe BIND v9.3.2 updates are available for download from: http://software.hp.com \n\n \nHP-UX Release - B.11.11 running v8.1.2\nAction - Upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates listed below \n \nHP-UX Release - B.11.11 running v9.2.0\nBIND Depot name - BIND920v11.depot\n MD5 Sum - F6999280DE19645EF86FF52083AACD72\n \nHP-UX Release - B.11.23 running v9.2.0 \nAction - Install PHNE_37865\n\nHP-UX Release - B.11.11 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent \n \nHP-UX Release - B.11.23 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent\n \nHP-UX Release - B.11.31 running v9.3.2\nAction - Install revision C.9.3.2.3.0 or subsequent\n\nNote: HP is aware of performance issues with these updates / patch. All customers should test the updates / patch in their environment. HP is investigating changes to reduce the performance issues. This bulletin will be revised when new updates / patch become available. \n\nMANUAL ACTIONS: Yes - NonUpdate \nFor B.11.11 running v8.1.2, upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates \nFor B.11.11 running v9.2.0 install BIND920v11.depot \n\nPRODUCT SPECIFIC INFORMATION \nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all HP-issued Security Bulletins and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa \n\nAFFECTED VERSIONS \n\nFor BIND v8.1.2 \nHP-UX B.11.11 \n============= \nInternetSrvcs.INETSVCS-RUN \naction: upgrade to BIND v9.2.0 or BIND v9.3.2 and apply the updates \n\nFor BIND v9.3.2 \nHP-UX B.11.11 \n============= \nBindUpgrade.BIND-UPGRADE \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nHP-UX B.11.23 \n============= \nBindUpgrade.BIND-UPGRADE \nBindUpgrade.BIND2-UPGRADE \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nHP-UX B.11.31 \n============= \nNameService.BIND-AUX \nNameService.BIND-RUN \naction: install revision C.9.3.2.3.0 or subsequent \nURL: http://software.hp.com \n\nFor BIND v9.2.0 \nHP-UX B.11.11 \n============= \nBINDv920.INETSVCS-BIND \naction: install revision B.11.11.01.011 or subsequent \nURL: ftp://ss080058:ss080058@hprc.external.hp.com \n\nHP-UX B.11.23 \n============= \nInternetSrvcs.INETSVCS-INETD \nInternetSrvcs.INETSVCS-RUN \nInternetSrvcs.INETSVCS2-RUN \naction: install patch PHNE_37865 or subsequent \nURL: http://itrc.hp.com \n\nEND AFFECTED VERSIONS \n\nHISTORY \nVersion:1 (rev.1) - 16 July 2008 Initial release \nVersion:2 (rev.2) - 19 July 2008 Added BIND v9.2.0 depot information \nVersion:3 (rev.3) - 06 August 2008 Updated patch location, revised BIND v9.2.0 depot information, added BIND v8.1.2 \n\nThird Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer\u0027s patch management policy. \n\nSupport: For further information, contact normal HP Services support channel. \n\nReport: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com \nIt is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. \nTo get the security-alert PGP key, please send an e-mail message as follows:\n  To: security-alert@hp.com \n  Subject: get key\n\nSubscribe: To initiate a subscription to receive future HP Security Bulletins via Email: \nhttp://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA\u0026langcode=USENG\u0026jumpid=in_SC-GEN__driverITRC\u0026topiccode=ITRC \nOn the web page: ITRC security bulletins and patch sign-up \nUnder Step1: your ITRC security bulletins and patches \n  - check ALL categories for which alerts are required and continue. \nUnder Step2: your ITRC operating systems \n  - verify your operating system selections are checked and save. \n\n\nTo update an existing subscription: http://h30046.www3.hp.com/subSignIn.php \nLog in on the web page: Subscriber\u0027s choice for Business: sign-in. \nOn the web page: Subscriber\u0027s Choice: your profile summary - use Edit Profile to update appropriate sections. \n\n\nTo review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do \n\n\n* The Software Product Category that this Security Bulletin relates to is represented by the 5th and 6th characters of the Bulletin number in the title: \n\nGN = HP General SW\nMA = HP Management Agents\nMI = Misc. 3rd Party SW\nMP = HP MPE/iX\nNS = HP NonStop Servers\nOV = HP OpenVMS\nPI = HP Printing \u0026 Imaging\nST = HP Storage SW\nTL = HP Trusted Linux\nTU = HP Tru64 UNIX\nUX = HP-UX\nVV = HP VirtualVault\n \nSystem management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions. \n\n\n\"HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user\u0027s use or disregard of the information provided in this Bulletin. \n\nHewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental, special or consequential damages including downtime cost; lost profits; damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners. =========================================================== \nUbuntu Security Notice USN-622-1              July 08, 2008\nbind9 vulnerability\nCVE-2008-1447\n===========================================================\n\nA security issue affects the following Ubuntu releases:\n\nUbuntu 6.06 LTS\nUbuntu 7.04\nUbuntu 7.10\nUbuntu 8.04 LTS\n\nThis advisory also applies to the corresponding versions of\nKubuntu, Edubuntu, and Xubuntu. \n\nThe problem can be corrected by upgrading your system to the\nfollowing package versions:\n\nUbuntu 6.06 LTS:\n  libdns21                        1:9.3.2-2ubuntu1.5\n\nUbuntu 7.04:\n  libdns22                        1:9.3.4-2ubuntu2.3\n\nUbuntu 7.10:\n  libdns32                        1:9.4.1-P1-3ubuntu2\n\nUbuntu 8.04 LTS:\n  libdns35                        1:9.4.2-10ubuntu0.1\n\nIn general, a standard system upgrade is sufficient to effect the\nnecessary changes. \n\nDetails follow:\n\nDan Kaminsky discovered weaknesses in the DNS protocol as implemented\nby Bind. \n\n\nDescription\n===========\n\n== Several vulnerabilities in safe level ==\n\nMultiple errors in the implementation of safe level restrictions can be\nexploited to call \"untrace_var()\", perform syslog operations, and modify\n\"$PROGRAM_NAME\" at safe level 4, or call insecure methods at safe levels\n1 through 3. \n\n(These vulnerabilities were reported by Keita Yamaguchi.)\n\n\n== DoS vulnerability in WEBrick ==\n\nAn   error exists   in   the   usage   of   regular   expressions   in\n\"WEBrick::HTTPUtils.split_header_value()\".  This can  be  exploited  to\nconsume large amounts of CPU via a specially crafted HTTP request. \n\n(This vulnerability was reported by Christian Neukirchen.)\n\n\n== Lack of taintness check in dl ==\n\nAn error in \"DL\" can be exploited to bypass security  restrictions  and\ncall potentially dangerous functions. \n\n(This vulnerability was reported by Tanaka Akira.)\n\n\nAffected packages:\n\n   Pardus 2008:\n     ruby, all before 1.8.7_p72-16-4\n     ruby-mode, all before 1.8.7_p72-16-4\n\n   Pardus 2007:\n     ruby, all before 1.8.7_p72-16-13\n     ruby-mode, all before 1.8.7_p72-16-4\n\n\n\nResolution\n==========\n\nThere are update(s) for ruby, ruby-mode. You can update them via Package\nManager or with a single command from console:\n\n   Pardus 2008:\n     pisi up ruby ruby-mode\n\n   Pardus 2007:\n     pisi up ruby ruby-mode\n\n\nReferences\n==========\n\n   * http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby\n   * http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447\n   * http://secunia.com/advisories/31430/\n\n------------------------------------------------------------------------\n\n-- \nP\u0131nar Yanarda\u011f\nhttp://pinguar.org\n\n\n_______________________________________________\nFull-Disclosure - We believe in it.  There are two ways to deal with this situation:\n\n1.  The documentation included with BIND 9 contains a\nmigration guide. Configure the BIND 8 resolver to forward queries to a BIND 9\nresolver.  Provided that the network between both resolvers is trusted,\nthis protects the BIND 8 resolver from cache poisoning attacks (to the\nsame degree that the BIND 9 resolver is protected).  It is theoretically possible to safely use\nBIND 8 in this way, but updating to BIND 9 is strongly recommended. \nBIND 8 (that is, the bind package) will be removed from the etch\ndistribution in a future point release.  Scott\nKitterman noted that python-dns is vulnerable to this predictability,\nas it randomizes neither its transaction ID nor its source port. \nTaken together, this lack of entropy leaves applications using\npython-dns to perform DNS queries highly susceptible to response\nforgery. \n\n----------------------------------------------------------------------\n\nTry a new way to discover vulnerabilities that ALREADY EXIST in your\nIT infrastructure. \n\nThe Full Featured Secunia Network Software Inspector (NSI) is now\navailable:\nhttp://secunia.com/network_software_inspector/\n\nThe Secunia NSI enables you to INSPECT, DISCOVER, and DOCUMENT\nvulnerabilities in more than 4,000 different Windows applications. \n\n----------------------------------------------------------------------\n\nTITLE:\nRed Hat update for bind\n\nSECUNIA ADVISORY ID:\nSA26195\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/26195/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nSpoofing\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nRed Hat Enterprise Linux (v. 5 server)\nhttp://secunia.com/product/13652/\nRed Hat Enterprise Linux Desktop (v. 5 client)\nhttp://secunia.com/product/13653/\nRed Hat Enterprise Linux Desktop Workstation (v. 5 client)\nhttp://secunia.com/product/13651/\nRedHat Enterprise Linux AS 2.1\nhttp://secunia.com/product/48/\nRedHat Enterprise Linux AS 3\nhttp://secunia.com/product/2534/\nRedHat Enterprise Linux AS 4\nhttp://secunia.com/product/4669/\nRedHat Enterprise Linux ES 2.1\nhttp://secunia.com/product/1306/\nRedHat Enterprise Linux ES 3\nhttp://secunia.com/product/2535/\nRedHat Enterprise Linux ES 4\nhttp://secunia.com/product/4668/\nRedHat Enterprise Linux WS 3\nhttp://secunia.com/product/2536/\nRedHat Enterprise Linux WS 2.1\nhttp://secunia.com/product/1044/\nRedHat Enterprise Linux WS 4\nhttp://secunia.com/product/4670/\nRedHat Linux Advanced Workstation 2.1 for Itanium\nhttp://secunia.com/product/1326/\n\nDESCRIPTION:\nRed Hat has issued an update for bind. \n\nFor more information:\nSA26152\n\nSOLUTION:\nUpdated packages are available from Red Hat Network. \nhttp://rhn.redhat.com\n\nORIGINAL ADVISORY:\nhttp://rhn.redhat.com/errata/RHSA-2007-0740.html\n\nOTHER REFERENCES:\nSA26152:\nhttp://secunia.com/advisories/26152/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. Security Advisory (08-AUG-2008) (CVE-2008-3280)\n===============================================\n\nBen Laurie of Google\u0027s Applied Security team, while working with an\nexternal researcher, Dr. Richard Clayton of the Computer Laboratory,\nCambridge University, found that various OpenID Providers (OPs) had\nTLS Server Certificates that used weak keys, as a result of the Debian\nPredictable Random Number Generator (CVE-2008-0166). \n\nIn combination with the DNS Cache Poisoning issue (CVE-2008-1447) and\nthe fact that almost all SSL/TLS implementations do not consult CRLs\n(currently an untracked issue), this means that it is impossible to\nrely on these OPs. \n\nAttack Description\n------------------\n\nIn order to mount an attack against a vulnerable OP, the attacker\nfirst finds the private key corresponding to the weak TLS\ncertificate. He then sets up a website masquerading as the original\nOP, both for the OpenID protocol and also for HTTP/HTTPS. \n\nThere are two cases, one is where the victim is a user trying to\nidentify themselves, in which case, even if they use HTTPS to \"ensure\"\nthat the site they are visiting is indeed their provider, they will be\nunable to detect the substitution and will give their login\ncredentials to the attacker. \n\nThe second case is where the victim is the Relying Party (RP). In this\ncase, even if the RP uses TLS to connect to the OP, as is recommended\nfor higher assurance, he will not be defended, as the vast majority of\nOpenID implementations do not check CRLs, and will, therefore, accept\nthe malicious site as the true OP. \n\nMitigation\n----------\n\nMitigation is surprisingly hard. In theory the vulnerable site should\nrevoke their weak certificate and issue a new one. \n\nHowever, since the CRLs will almost certainly not be checked, this\nmeans the site will still be vulnerable to attack for the lifetime of\nthe certificate (and perhaps beyond, depending on user\nbehaviour). Note that shutting down the site DOES NOT prevent the\nattack. \n\nTherefore mitigation falls to other parties. \n\n1. Browsers must check CRLs by default. \n\n2. OpenID libraries must check CRLs. \n\n3. \n\n4. Until either 1 and 2 or 3 have been done, OpenID cannot be trusted\n   for any OP that cannot demonstrate it has never had a weak\n   certificate. \n\nDiscussion\n----------\n\nNormally, when security problems are encountered with a single piece\nof software, the responsible thing to do is to is to wait until fixes\nare available before making any announcement. However, as a number of\nexamples in the past have demonstrated, this approach does not work\nparticularly well when many different pieces of software are involved\nbecause it is necessary to coordinate a simultaneous release of the\nfixes, whilst hoping that the very large number of people involved\nwill cooperate in keeping the vulnerability secret. \n\nIn the present situation, the fixes will involve considerable\ndevelopment work in adding CRL handling to a great many pieces of\nopenID code. This is a far from trivial amount of work. \n\nThe fixes will also involve changes to browser preferences to ensure\nthat CRLs are checked by default -- which many vendors have resisted\nfor years. We are extremely pessimistic that a security vulnerability\nin OpenID will be seen as sufficiently important to change the browser\nvendors minds. \n\nHence, we see no value in delaying this announcement; and by making\nthe details public as soon as possible, we believe that individuals\nwho rely on OpenID will be better able to take their own individual\nsteps to avoid relying upon the flawed certificates we have\nidentified. \n\nOpenID is at heart quite a weak protocol, when used in its most\ngeneral form[1], and consequently there is very limited reliance upon\nits security. This means that the consequences of the combination of\nattacks that are now possible is nothing like as serious as might\notherwise have been the case. \n\nHowever, it does give an insight into the type of security disaster\nthat may occur in the future if we do not start to take CRLs\nseriously, but merely stick them onto \"to-do\" lists or disable them in\nthe name of tiny performance improvements. \n\nAffected Sites\n--------------\n\nThere is no central registry of OpenID systems, and so we cannot be\nsure that we have identified all of the weak certificates that are\ncurrently being served. The list of those we have found so far is:\n\nopenid.sun.com\nwww.xopenid.net\nopenid.net.nz\n\nNotes\n-----\n\n[1] There are ways of using OpenID that are significantly more secure\n    than the commonly deployed scheme, I shall describe those in a\n    separate article. \n\n_______________________________________________\nFull-Disclosure - We believe in it. \nCharter: http://lists.grok.org.uk/full-disclosure-charter.html\nHosted and sponsored by Secunia - http://secunia.com/\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          }
        ],
        "trust": 3.51
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-31572",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2008-1447",
            "trust": 2.2
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "31430",
            "trust": 1.2
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2025",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-0297",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2334",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2383",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2113",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2558",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2019",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2377",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2584",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2342",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2010-0622",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2166",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2051",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2092",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2029",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2384",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2268",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2052",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2549",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2197",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2009-0311",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2055",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2467",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2123",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2482",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2525",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2023",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2582",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2114",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2196",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2139",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2466",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2050",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2195",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2291",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-2030",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020548",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020578",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020448",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020558",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020702",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020440",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020575",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020437",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020802",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020449",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020579",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020561",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020804",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020577",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020560",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020651",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020653",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020438",
            "trust": 1.1
          },
          {
            "db": "SECTRACK",
            "id": "1020576",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31209",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31197",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31422",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30977",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31151",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31354",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31093",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31212",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31207",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31221",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31254",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31451",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31169",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30988",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30973",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31687",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31199",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30980",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31137",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30998",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31014",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31065",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31882",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31019",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31153",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31482",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31495",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33178",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33714",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31213",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31326",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31052",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31011",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31588",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31033",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31031",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30979",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31022",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31094",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31030",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31204",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30925",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31072",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31152",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31237",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31012",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "33786",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31143",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31236",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31900",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "30989",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "31823",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-190B",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-260A",
            "trust": 1.1
          },
          {
            "db": "USCERT",
            "id": "TA08-190A",
            "trust": 1.1
          },
          {
            "db": "BID",
            "id": "30131",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6130",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6123",
            "trust": 1.1
          },
          {
            "db": "EXPLOIT-DB",
            "id": "6122",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "26195",
            "trust": 0.9
          },
          {
            "db": "EXPLOIT-DB",
            "id": "4266",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735",
            "trust": 0.8
          },
          {
            "db": "PACKETSTORM",
            "id": "68878",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68288",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68068",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "73732",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68039",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68691",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68037",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68546",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68063",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "68038",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68755",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68412",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68118",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "73060",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68502",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68061",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "74443",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "96747",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "94774",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68199",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68183",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68471",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "70207",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68036",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68500",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68360",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68473",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68129",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68554",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68543",
            "trust": 0.1
          },
          {
            "db": "SEEBUG",
            "id": "SSVID-65607",
            "trust": 0.1
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "69021",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "58035",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "68924",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "id": "VAR-200707-0675",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T22:49:38.575000Z",
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-331",
            "trust": 1.1
          },
          {
            "problemtype": "CWE-310",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26667"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26668"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26669"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26670"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26671"
          },
          {
            "trust": 1.1,
            "url": "http://www.ibm.com/support/docview.wss?uid=isg1iz26672"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/jul/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00004.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.apple.com/archives/security-announce//2008/sep/msg00005.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/bid/30131"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/495289/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.securityfocus.com/archive/1/495869/100/0/threaded"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-190a.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-190b.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.us-cert.gov/cas/techalerts/ta08-260a.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/800113"
          },
          {
            "trust": 1.1,
            "url": "http://www.cisco.com/en/us/products/products_security_advisory09186a00809c2168.shtml"
          },
          {
            "trust": 1.1,
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=494401"
          },
          {
            "trust": 1.1,
            "url": "http://support.apple.com/kb/ht3026"
          },
          {
            "trust": 1.1,
            "url": "http://support.apple.com/kb/ht3129"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx117991"
          },
          {
            "trust": 1.1,
            "url": "http://support.citrix.com/article/ctx118183"
          },
          {
            "trust": 1.1,
            "url": "http://up2date.astaro.com/2008/08/up2date_7202_released.html"
          },
          {
            "trust": 1.1,
            "url": "http://wiki.rpath.com/wiki/advisories:rpsa-2008-0231"
          },
          {
            "trust": 1.1,
            "url": "http://wiki.rpath.com/wiki/advisories:rpsa-2010-0018"
          },
          {
            "trust": 1.1,
            "url": "http://www.bluecoat.com/support/security-advisories/dns_cache_poisoning"
          },
          {
            "trust": 1.1,
            "url": "http://www.isc.org/index.pl?/sw/bind/bind-security.php"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7dwr4j"
          },
          {
            "trust": 1.1,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7ecl8q"
          },
          {
            "trust": 1.1,
            "url": "http://www.novell.com/support/viewcontent.do?externalid=7000912"
          },
          {
            "trust": 1.1,
            "url": "http://www.phys.uu.nl/~rombouts/pdnsd.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.phys.uu.nl/~rombouts/pdnsd/changelog"
          },
          {
            "trust": 1.1,
            "url": "http://www.rtpro.yamaha.co.jp/rt/faq/security/vu800113.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vmware.com/security/advisories/vmsa-2008-0014.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1603"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1604"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1605"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1619"
          },
          {
            "trust": 1.1,
            "url": "http://www.debian.org/security/2008/dsa-1623"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6122"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6123"
          },
          {
            "trust": 1.1,
            "url": "https://www.exploit-db.com/exploits/6130"
          },
          {
            "trust": 1.1,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-july/msg00402.html"
          },
          {
            "trust": 1.1,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2008-july/msg00458.html"
          },
          {
            "trust": 1.1,
            "url": "http://security.freebsd.org/advisories/freebsd-sa-08:06.bind.asc"
          },
          {
            "trust": 1.1,
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2008-august/064118.html"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-200807-08.xml"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-200812-17.xml"
          },
          {
            "trust": 1.1,
            "url": "http://security.gentoo.org/glsa/glsa-201209-25.xml"
          },
          {
            "trust": 1.1,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c01662368"
          },
          {
            "trust": 1.1,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c01523520"
          },
          {
            "trust": 1.1,
            "url": "http://www.mandriva.com/security/advisories?name=mdvsa-2008:139"
          },
          {
            "trust": 1.1,
            "url": "http://blog.invisibledenizen.org/2008/07/kaminskys-dns-issue-accidentally-leaked.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.caughq.org/exploits/cau-ex-2008-0002.txt"
          },
          {
            "trust": 1.1,
            "url": "http://www.caughq.org/exploits/cau-ex-2008-0003.txt"
          },
          {
            "trust": 1.1,
            "url": "http://www.doxpara.com/?p=1176"
          },
          {
            "trust": 1.1,
            "url": "http://www.doxpara.com/dmk_bo2k8.ppt"
          },
          {
            "trust": 1.1,
            "url": "http://www.nominum.com/asset_upload_file741_2661.pdf"
          },
          {
            "trust": 1.1,
            "url": "http://www.unixwiz.net/techtips/iguide-kaminsky-dns-vuln.html"
          },
          {
            "trust": 1.1,
            "url": "https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-037"
          },
          {
            "trust": 1.1,
            "url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2008-009.txt.asc"
          },
          {
            "trust": 1.1,
            "url": "http://www.openbsd.org/errata42.html#013_bind"
          },
          {
            "trust": 1.1,
            "url": "http://www.openbsd.org/errata43.html#004_bind"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a12117"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5725"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5761"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5917"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a9627"
          },
          {
            "trust": 1.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2008-0533.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.redhat.com/support/errata/rhsa-2008-0789.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020437"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020438"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020440"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020448"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020449"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020548"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020558"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020560"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020561"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020575"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020576"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020577"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020578"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020579"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020651"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020653"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020702"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020802"
          },
          {
            "trust": 1.1,
            "url": "http://www.securitytracker.com/id?1020804"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30925"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30973"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30977"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30979"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30980"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30988"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30989"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/30998"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31011"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31012"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31014"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31019"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31022"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31030"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31031"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31033"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31052"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31065"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31072"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31093"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31094"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31137"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31143"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31151"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31152"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31153"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31169"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31197"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31199"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31204"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31207"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31209"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31212"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31213"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31221"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31236"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31237"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31254"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31326"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31354"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31422"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31430"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31451"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31482"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31495"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31588"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31687"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31823"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31882"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/31900"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33178"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33714"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/33786"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-240048-1"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00003.html"
          },
          {
            "trust": 1.1,
            "url": "http://lists.opensuse.org/opensuse-security-announce/2008-08/msg00006.html"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-622-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.ubuntu.com/usn/usn-627-1"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2019/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2023/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2025/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2029/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2030/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2050/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2051/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2052/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2055/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2092/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2113/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2114/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2123/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2139/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2166/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2195/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2196/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2197/references"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2268"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2291"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2334"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2342"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2377"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2383"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2384"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2466"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2467"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2482"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2525"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2549"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2558"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2582"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2008/2584"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2009/0297"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2009/0311"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2010/0622"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43637"
          },
          {
            "trust": 1.1,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/43334"
          },
          {
            "trust": 1.0,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-1447"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=121866517322103\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=123324863916385\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://www.ipcop.org/index.php?name=news\u0026file=article\u0026sid=40"
          },
          {
            "trust": 1.0,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2008\u0026m=slackware-security.539239"
          },
          {
            "trust": 1.0,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026id=762152"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=141879471518471\u0026w=2"
          },
          {
            "trust": 1.0,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026y=2008\u0026m=slackware-security.452680"
          },
          {
            "trust": 1.0,
            "url": "http://marc.info/?l=bugtraq\u0026m=121630706004256\u0026w=2"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/26195/"
          },
          {
            "trust": 0.8,
            "url": "http://csrc.nist.gov/publications/nistpubs/800-81/sp800-81.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-dnsext-forgery-resilience"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3833"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc2827"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3704"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3013"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc4033"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-tsvwg-port-randomization"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_random.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_transmit.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/forgery.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/microsoftdns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind9dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind8dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.sans.org/reading_room/whitepapers/dns/1567.php"
          },
          {
            "trust": 0.8,
            "url": "http://blogs.iss.net/archive/morednsnat.html"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/cert/jvnvu800113/"
          },
          {
            "trust": 0.8,
            "url": "http://www.cert.at/static/cert.at-0802-dns-patchanalysis.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://www.isc.org/sw/bind/bind-security.php"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/docs/bind9dns.html"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu%23252735/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.milw0rm.com/exploits/4266"
          },
          {
            "trust": 0.8,
            "url": "http://docs.info.apple.com/article.html?artnum=307041"
          },
          {
            "trust": 0.4,
            "url": "http://secunia.com/"
          },
          {
            "trust": 0.4,
            "url": "http://lists.grok.org.uk/full-disclosure-charter.html"
          },
          {
            "trust": 0.3,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-1447"
          },
          {
            "trust": 0.3,
            "url": "http://packages.debian.org/\u003cpkg\u003e"
          },
          {
            "trust": 0.3,
            "url": "http://security.debian.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.3,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.2,
            "url": "http://www.itrc.hp.com/service/cki/secbullarchive.do"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/driveralertprofile.php?regioncode=na\u0026langcode=useng\u0026jumpid=in_sc-gen__driveritrc\u0026topiccode=itrc"
          },
          {
            "trust": 0.2,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/subsignin.php"
          },
          {
            "trust": 0.1,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026amp;id=762152"
          },
          {
            "trust": 0.1,
            "url": "http://www.ipcop.org/index.php?name=news\u0026amp;file=article\u0026amp;sid=40"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=123324863916385\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=141879471518471\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=121866517322103\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://marc.info/?l=bugtraq\u0026amp;m=121630706004256\u0026amp;w=2"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026amp;y=2008\u0026amp;m=slackware-security.539239"
          },
          {
            "trust": 0.1,
            "url": "http://slackware.com/security/viewer.php?l=slackware-security\u0026amp;y=2008\u0026amp;m=slackware-security.452680"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/en/us/products/products_security_vulnerability_policy.html."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/go/psirt"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/web/about/security/intelligence/dns-bcp.html."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/en/us/products/prod_warranties_item09186a008088e31f.html,"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/pcgi-bin/software/tablebuild/tablebuild.pl/nr-eval"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/pcgi-bin/tablebuild.pl/acns55"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com."
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/go/psirt."
          },
          {
            "trust": 0.1,
            "url": "https://www.example.com"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/687/directory/dirtac.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/public/sw-center/sw-usingswc.shtml."
          },
          {
            "trust": 0.1,
            "url": "http://intellishield.cisco.com/security/alertmanager/cvss"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/advisories"
          },
          {
            "trust": 0.1,
            "url": "http://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-4194"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.5"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-200901-03.xml"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4194"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/d/dnsmasq/dnsmasq_2.35-1+etch4.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://software.hp.com"
          },
          {
            "trust": 0.1,
            "url": "http://itrc.hp.com"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.3.4-2ubuntu2.3_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.3.2-2ubuntu1.5_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.4.2-10ubuntu0.1_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/liblwres30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres9_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind-dev_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg30_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9-host_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-0_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns22_9.3.4-2ubuntu2.3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc32_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisc11_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc30_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns21_9.3.2-2ubuntu1.5_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libbind9-30_9.4.1-p1-3ubuntu2_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-doc_9.4.1-p1-3ubuntu2_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.1-p1-3ubuntu2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccc0_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns32_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libbind9-30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.3.4.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/dnsutils_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/universe/b/bind9/lwresd_9.4.2-10ubuntu0.1_lpia.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9_9.4.1-p1-3ubuntu2.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.4-2ubuntu2.3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/bind9-host_9.3.4-2ubuntu2.3_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/liblwres30_9.4.1-p1-3ubuntu2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/b/bind9/lwresd_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/dnsutils_9.4.1-p1-3ubuntu2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libisccfg1_9.3.2-2ubuntu1.5_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/libisccc30_9.4.2-10ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/b/bind9/libdns35_9.4.2-10ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://ports.ubuntu.com/pool/main/b/bind9/bind9_9.4.2-10ubuntu0.1_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/31430/"
          },
          {
            "trust": 0.1,
            "url": "http://pinguar.org"
          },
          {
            "trust": 0.1,
            "url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/p/python-dns/python-dns_2.3.0-5.2+etch1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2536/"
          },
          {
            "trust": 0.1,
            "url": "http://rhn.redhat.com/errata/rhsa-2007-0740.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/network_software_inspector/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2535/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13653/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/48/"
          },
          {
            "trust": 0.1,
            "url": "http://rhn.redhat.com"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13651/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4669/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4668/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/13652/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1326/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/26152/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1306/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/4670/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2534/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/1044/"
          },
          {
            "trust": 0.1,
            "url": "https://www.xopenid.net"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-3280"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-0166"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735"
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572"
          },
          {
            "db": "PACKETSTORM",
            "id": "68039"
          },
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "73732"
          },
          {
            "db": "PACKETSTORM",
            "id": "68288"
          },
          {
            "db": "PACKETSTORM",
            "id": "68691"
          },
          {
            "db": "PACKETSTORM",
            "id": "68878"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68037"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          },
          {
            "db": "PACKETSTORM",
            "id": "58035"
          },
          {
            "db": "PACKETSTORM",
            "id": "68924"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68039",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68068",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "73732",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68288",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68691",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68878",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68063",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "69021",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68037",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68546",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "58035",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "68924",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2008-07-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2007-07-27T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "date": "2008-07-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "date": "2008-07-10T06:26:35",
            "db": "PACKETSTORM",
            "id": "68039",
            "ident": null
          },
          {
            "date": "2008-07-10T07:29:30",
            "db": "PACKETSTORM",
            "id": "68068",
            "ident": null
          },
          {
            "date": "2009-01-12T19:16:04",
            "db": "PACKETSTORM",
            "id": "73732",
            "ident": null
          },
          {
            "date": "2008-07-17T19:16:48",
            "db": "PACKETSTORM",
            "id": "68288",
            "ident": null
          },
          {
            "date": "2008-07-31T22:22:45",
            "db": "PACKETSTORM",
            "id": "68691",
            "ident": null
          },
          {
            "date": "2008-08-06T21:52:19",
            "db": "PACKETSTORM",
            "id": "68878",
            "ident": null
          },
          {
            "date": "2008-07-10T07:10:37",
            "db": "PACKETSTORM",
            "id": "68063",
            "ident": null
          },
          {
            "date": "2008-08-13T04:21:24",
            "db": "PACKETSTORM",
            "id": "69021",
            "ident": null
          },
          {
            "date": "2008-07-10T06:23:57",
            "db": "PACKETSTORM",
            "id": "68037",
            "ident": null
          },
          {
            "date": "2008-07-28T15:27:39",
            "db": "PACKETSTORM",
            "id": "68546",
            "ident": null
          },
          {
            "date": "2007-07-26T04:26:32",
            "db": "PACKETSTORM",
            "id": "58035",
            "ident": null
          },
          {
            "date": "2008-08-08T20:46:25",
            "db": "PACKETSTORM",
            "id": "68924",
            "ident": null
          },
          {
            "date": "2008-07-08T23:41:00",
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-04-14T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2008-08-06T00:00:00",
            "db": "CERT/CC",
            "id": "VU#252735",
            "ident": null
          },
          {
            "date": "2020-03-24T00:00:00",
            "db": "VULHUB",
            "id": "VHN-31572",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2008-1447",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          }
        ],
        "trust": 0.2
      },
      "title": {
        "_id": null,
        "data": "Multiple DNS implementations vulnerable to cache poisoning",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "spoof",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "68068"
          },
          {
            "db": "PACKETSTORM",
            "id": "68063"
          },
          {
            "db": "PACKETSTORM",
            "id": "69021"
          },
          {
            "db": "PACKETSTORM",
            "id": "68546"
          }
        ],
        "trust": 0.4
      }
    }

    VAR-200511-0018

    Vulnerability from variot - Updated: 2026-04-10 22:30

    The Internet Key Exchange version 1 (IKEv1) implementation in Stonesoft StoneGate Firewall before 2.6.1 allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Stonesoft advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Stonesoft StoneGate Firewall and VPN Client are prone to multiple unspecified vulnerabilities in its IKEv1 implementation. Potential issues include denial of service attacks, format strings, and buffer overflows. These issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. Stonesoft StoneGate Firewall is a firewall.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "stonegate firewall",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "stonesoft",
            "version": "2.6.0"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": "stonegate firewall",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "stonesoft",
            "version": "2.6.0"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0.9"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0.8"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0.7"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "1.7.2"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "1.7"
          },
          {
            "_id": null,
            "model": "stonegate high availability firewall and vpn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.6"
          },
          {
            "_id": null,
            "model": "stonegate high availability firewall and vpn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0.8"
          },
          {
            "_id": null,
            "model": "stonegate high availability firewall and vpn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "stonegate high availability firewall and vpn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "1.7"
          },
          {
            "_id": null,
            "model": "stonegate vpn client",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.6.1"
          },
          {
            "_id": null,
            "model": "stonegate high availability firewall and vpn",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "stonesoft",
            "version": "2.6.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15405"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "15405"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-3672",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3672",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-14880",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3672",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-252",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-14880",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in Stonesoft StoneGate Firewall before 2.6.1 allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the Stonesoft advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Stonesoft StoneGate Firewall and VPN Client are prone to multiple unspecified vulnerabilities in its IKEv1 implementation.  Potential issues include denial of service attacks, format strings, and buffer overflows. \nThese issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. Stonesoft StoneGate Firewall is a firewall. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15405"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.07
      },
      "exploit_availability": {
        "_id": null,
        "data": [
          {
            "reference": "https://www.scap.org.cn/vuln/vhn-14880",
            "trust": 0.1,
            "type": "unknown"
          }
        ],
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          }
        ]
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 2.5
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672",
            "trust": 2.0
          },
          {
            "db": "BID",
            "id": "15405",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "17566",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2408",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          },
          {
            "db": "BID",
            "id": "15405"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          }
        ]
      },
      "id": "VAR-200511-0018",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-04-10T22:30:02.285000Z",
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.5,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.0,
            "url": "http://www.stonesoft.com/support/security_advisories/7244.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/15405"
          },
          {
            "trust": 1.7,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.7,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17566"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2005/2408"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2408"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880"
          },
          {
            "db": "BID",
            "id": "15405"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-14880",
            "ident": null
          },
          {
            "db": "BID",
            "id": "15405",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3672",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14880",
            "ident": null
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15405",
            "ident": null
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-252",
            "ident": null
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3672",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14880",
            "ident": null
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15405",
            "ident": null
          },
          {
            "date": "2005-12-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-252",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3672",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-252"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0062

    Vulnerability from variot - Updated: 2026-03-09 22:16

    The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers before 7-1-0, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. Juniper's M, T, J and E series routers are all network router products developed by Juniper. The IKE protocol is implemented in the JUNOS and JUNOSe software. Testing of the IKE version 1 phase 1 ISAKMP test suite developed by the Oulu University Security Programming Group (OUSPG) revealed a vulnerability in the IKE protocol implementation in JUNOS and JUNOSe software. By sending specially crafted messages, vulnerable products may exhibit denial of service, format string vulnerabilities, and buffer overflows. In some cases, arbitrary code execution may also be possible.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "junos t",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose m",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "junose j",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junos e",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "junos m",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose t",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose e",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "junos j",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "_id": null,
            "model": "junos m",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose m",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "junos t",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose e",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "junos j",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junose j",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "junos e",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "7.0.0"
          },
          {
            "_id": null,
            "model": "junose t",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "juniper",
            "version": "6.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:misc:miraclelinux_asianux_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:cisco:ios",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_asa",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:symantec:enterprise_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:juniper:screenos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:checkpoint:vpn-1_firewall-1",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:hp-ux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:redhat:enterprise_linux",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "NISCC albatross@tim.it",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2005-3733",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3733",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-14941",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3733",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "NVD",
                "id": "CVE-2005-3733",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-304",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-14941",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers before 7-1-0, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Juniper\u0027s M, T, J and E series routers are all network router products developed by Juniper. The IKE protocol is implemented in the JUNOS and JUNOSe software. Testing of the IKE version 1 phase 1 ISAKMP test suite developed by the Oulu University Security Programming Group (OUSPG) revealed a vulnerability in the IKE protocol implementation in JUNOS and JUNOSe software. By sending specially crafted messages, vulnerable products may exhibit denial of service, format string vulnerabilities, and buffer overflows. In some cases, arbitrary code execution may also be possible. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.52
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.3
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733",
            "trust": 2.5
          },
          {
            "db": "SECUNIA",
            "id": "17568",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1015203",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2410",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "15402",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          }
        ]
      },
      "id": "VAR-200511-0062",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14941"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-03-09T22:16:18.317000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/PSN-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/RHSA-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/RHSA/RHSA-2006-0267J.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.3,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.5,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.5,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/15402"
          },
          {
            "trust": 1.7,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015203"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17568"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2005/2410"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3733"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3733"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2410"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-14941",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000686",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3733",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2005-11-21T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14941",
            "ident": null
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734",
            "ident": null
          },
          {
            "date": "2005-11-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-304",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000686",
            "ident": null
          },
          {
            "date": "2005-11-21T23:03:00",
            "db": "NVD",
            "id": "CVE-2005-3733",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14941",
            "ident": null
          },
          {
            "date": "2006-09-20T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-304",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000686",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3733",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-304"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0019

    Vulnerability from variot - Updated: 2026-03-09 21:53

    The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. Check Point Firewall-1 and VPN-1 are prone to denial of service attacks due to unspecified vulnerabilities in the IPSec implementation. The vulnerabilities may be triggered by malformed IKE traffic. Check Point is a network security product manufacturer.

    TITLE: IPsec-Tools ISAKMP IKE Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17668

    VERIFY ADVISORY: http://secunia.com/advisories/17668/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    SOFTWARE: IPsec-Tools 0.x http://secunia.com/product/3352/

    DESCRIPTION: A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious people to cause a DoS (Denial of Service).

    The vulnerability is caused due to a NULL pointer dereferencing error when processing certain ISAKMP packets in aggressive mode.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    SOLUTION: Update to version 0.6.3. http://sourceforge.net/project/showfiles.php?group_id=74601&package_id=74949&release_id=372605

    PROVIDED AND/OR DISCOVERED BY: The vendor credits Adrian Portelli.

    ORIGINAL ADVISORY: http://sourceforge.net/mailarchive/forum.php?thread_id=9017454&forum_id=32000 http://sourceforge.net/project/shownotes.php?release_id=372605&group_id=74601

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "vpn-1",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "ngx_r60"
          },
          {
            "_id": null,
            "model": "vpn-1 firewall-1 next generation",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "r55w"
          },
          {
            "_id": null,
            "model": "vpn-1 firewall-1 next generation",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "r55"
          },
          {
            "_id": null,
            "model": "express",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "ci_r57"
          },
          {
            "_id": null,
            "model": "vpn-1 firewall-1 next generation",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "r55p"
          },
          {
            "_id": null,
            "model": "firewall-1",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "vpn-1 firewall-1 next generation",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "checkpoint",
            "version": "r54"
          },
          {
            "_id": null,
            "model": "check point",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "checkpoint",
            "version": "*"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "_id": null,
            "model": "check point",
            "scope": null,
            "trust": 0.6,
            "vendor": "checkpoint",
            "version": null
          },
          {
            "_id": null,
            "model": "point software vpn-1/firewall-1 ng with ai r55w",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          },
          {
            "_id": null,
            "model": "point software vpn-1/firewall-1 ng with ai r55p",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          },
          {
            "_id": null,
            "model": "point software vpn-1/firewall-1 ng with ai r55",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          },
          {
            "_id": null,
            "model": "point software vpn-1/firewall-1 ng with ai r54",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          },
          {
            "_id": null,
            "model": "point software vpn-1 pro ngx r60",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          },
          {
            "_id": null,
            "model": "point software firewall-1 gx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "check",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "point software express ci r57",
            "scope": null,
            "trust": 0.3,
            "vendor": "check",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15479"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:misc:miraclelinux_asianux_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:cisco:ios",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_asa",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:symantec:enterprise_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:juniper:screenos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:checkpoint:vpn-1_firewall-1",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:hp-ux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:redhat:enterprise_linux",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Discovery is credited to Cisco in cooperation with CERT-FI and NISCC.",
        "sources": [
          {
            "db": "BID",
            "id": "15479"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-3673",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3673",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-14881",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3673",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "NVD",
                "id": "CVE-2005-3673",
                "trust": 0.8,
                "value": "High"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-264",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-14881",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in Check Point products allows remote attackers to cause a denial of service via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Check Point Firewall-1 and VPN-1 are prone to denial of service attacks due to unspecified vulnerabilities in the IPSec implementation.  The vulnerabilities may be triggered by malformed IKE traffic. Check Point is a network security product manufacturer. \n\nTITLE:\nIPsec-Tools ISAKMP IKE Message Processing Denial of Service\n\nSECUNIA ADVISORY ID:\nSA17668\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17668/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nIPsec-Tools 0.x\nhttp://secunia.com/product/3352/\n\nDESCRIPTION:\nA vulnerability has been reported in IPsec-Tools, which can be\nexploited by malicious people to cause a DoS (Denial of Service). \n\nThe vulnerability is caused due to a NULL pointer dereferencing error\nwhen processing certain ISAKMP packets in aggressive mode. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nSOLUTION:\nUpdate to version 0.6.3. \nhttp://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605\n\nPROVIDED AND/OR DISCOVERED BY:\nThe vendor credits Adrian Portelli. \n\nORIGINAL ADVISORY:\nhttp://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000\nhttp://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          },
          {
            "db": "BID",
            "id": "15479"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          }
        ],
        "trust": 2.79
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 3.3
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.3
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673",
            "trust": 2.8
          },
          {
            "db": "BID",
            "id": "15479",
            "trust": 2.8
          },
          {
            "db": "SECTRACK",
            "id": "1015235",
            "trust": 1.7
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2470",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881"
          },
          {
            "db": "BID",
            "id": "15479"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          }
        ]
      },
      "id": "VAR-200511-0019",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14881"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-03-09T21:53:50.690000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/PSN-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/RHSA-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/RHSA/RHSA-2006-0267J.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.3,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.5,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.5,
            "url": "http://www.securityfocus.com/bid/15479"
          },
          {
            "trust": 2.5,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.7,
            "url": "http://secureknowledge.us.checkpoint.com/secureknowledge/viewsolutiondocument.do?id=sk31316"
          },
          {
            "trust": 1.7,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015235"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17621"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.4,
            "url": "http://www.frsirt.com/english/advisories/2005/2470"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2005/2470"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3673"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3673"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.checkpoint.com/techsupport/"
          },
          {
            "trust": 0.3,
            "url": "http://www.checkpoint.com/downloads/latest/hfa.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881"
          },
          {
            "db": "BID",
            "id": "15479"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-14881",
            "ident": null
          },
          {
            "db": "BID",
            "id": "15479",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000683",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3673",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14881",
            "ident": null
          },
          {
            "date": "2005-11-17T00:00:00",
            "db": "BID",
            "id": "15479",
            "ident": null
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-264",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000683",
            "ident": null
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3673",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14881",
            "ident": null
          },
          {
            "date": "2005-11-17T00:00:00",
            "db": "BID",
            "id": "15479",
            "ident": null
          },
          {
            "date": "2006-09-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-264",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000683",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3673",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-264"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200807-0659

    Vulnerability from variot - Updated: 2026-03-09 21:24

    ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named. Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. Multiple vendors' implementations of the DNS protocol are prone to a DNS-spoofing vulnerability because the software fails to securely implement random values when performing DNS queries. Successfully exploiting this issue allows remote attackers to spoof DNS replies, allowing them to redirect network traffic and to launch man-in-the-middle attacks. This issue affects Microsoft Windows DNS Clients and Servers, ISC BIND 8 and 9, and multiple Cisco IOS releases; other DNS implementations may also be vulnerable. ----------------------------------------------------------------------

    Do you need accurate and reliable IDS / IPS / AV detection rules?

    Get in-depth vulnerability details: http://secunia.com/binary_analysis/sample_analysis/


    TITLE: pdnsd DNS Cache Poisoning and Denial of Service

    SECUNIA ADVISORY ID: SA31847

    VERIFY ADVISORY: http://secunia.com/advisories/31847/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    SOFTWARE: pdnsd 1.x http://secunia.com/advisories/product/9584/

    DESCRIPTION: Some vulnerabilities have been reported in pdnsd, which can be exploited by malicious people to poison the DNS cache and cause a DoS (Denial of Service).

    1) A vulnerability is caused due to pdnsd not sufficiently randomising the query port number, which can be exploited to poison the DNS cache.

    2) An error exists within the "p_exec_query()" function in src/dns_query.c when processing long replies with many answer sections. This can be exploited to e.g. crash the service by sending a specially crafted reply.

    The vulnerabilities are reported in versions prior to version 1.2.7-par.

    SOLUTION: Update to version 1.2.7-par.

    PROVIDED AND/OR DISCOVERED BY: 1) Dan Kaminsky, IOActive. 2) Reported by the vendor.

    ORIGINAL ADVISORY: http://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog

    OTHER REFERENCES: US-CERT VU#800113: http://www.kb.cert.org/vuls/id/800113


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/advisories/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_58"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_48"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_60"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_92"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_47"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_61"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_59"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "snv_94"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_25"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_72"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_09"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_46"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_29"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_83"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_70"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_75"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_15"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_78"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_21"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_66"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_20"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_63"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_11"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_52"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_24"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "10"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_35"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_76"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_07"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_69"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_74"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_14"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_16"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_01"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_12"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_18"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_33"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_71"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_44"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_81"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_67"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_31"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_64"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_84"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_17"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_62"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_77"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_91"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_93"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_86"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_36"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_04"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_41"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_13"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_39"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_37"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_32"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_05"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_38"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_89"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_57"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_22"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_56"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_65"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_88"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_02"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_54"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_68"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_53"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_23"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_85"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_87"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_03"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_28"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_06"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_40"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_73"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_30"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_79"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_27"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_45"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_26"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_95"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_42"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_10"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_19"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_82"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_90"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_80"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_55"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_43"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_50"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_08"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_49"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_34"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "sun",
            "version": "snv_51"
          },
          {
            "_id": null,
            "model": "ios 12.4",
            "scope": "ne",
            "trust": 0.9,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "alcatel lucent",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple computer",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "blue coat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "bluecat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "f5",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "force10",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fujitsu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "funkwerk",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "infoblox",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "internet consortium",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "mandriva",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nixu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nominum",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "novell",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openwall gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "suse linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "secure computing network security division",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "slackware linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "wind river",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "dnsmasq",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "(sparc)"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "(x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "_id": null,
            "model": "netware sp1.1",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": null,
            "trust": 0.6,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "sun",
            "version": "snv_95"
          },
          {
            "_id": null,
            "model": "windows xp home sp1",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.9-1"
          },
          {
            "_id": null,
            "model": "ios 12.3b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing cyberguard tsp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bind a1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "dnsmasq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "dnsmasq",
            "version": "2.35"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 95",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2.3.9"
          },
          {
            "_id": null,
            "model": "networks pmbb",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "rt140i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "rt105i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2.11"
          },
          {
            "_id": null,
            "model": "windows server datacenter edition sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "enterprise linux es ia64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "netware sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "networks screenos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "windows server enterprise edition itanium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "20030"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "ios 12.3yh",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2zh",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.7"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "windows xp professional edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "x64"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.3"
          },
          {
            "_id": null,
            "model": "coat systems packetshaper",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "blue",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.4"
          },
          {
            "_id": null,
            "model": "ios 12.3xi",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "networks junose p0-2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.3.5"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.2"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0.1"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.03"
          },
          {
            "_id": null,
            "model": "bind p6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.17"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "security gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "astaro",
            "version": "7"
          },
          {
            "_id": null,
            "model": "river systems linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "wind",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "storage management appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1.11.6"
          },
          {
            "_id": null,
            "model": "ios 12.3xb",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server enterprise edition itanium sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "4.1.43"
          },
          {
            "_id": null,
            "model": "bind a5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.03"
          },
          {
            "_id": null,
            "model": "rtx3000",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "messaging application server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.4"
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "bind b3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "ios 12.2zl",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.1.02"
          },
          {
            "_id": null,
            "model": "windows xp tablet pc edition sp3",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "bind b4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.7"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4.3"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "bind rc3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.1"
          },
          {
            "_id": null,
            "model": "solaris 8 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "vitalqip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "vitalqip sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ios 12.3xw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.02"
          },
          {
            "_id": null,
            "model": "linux alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.4"
          },
          {
            "_id": null,
            "model": "windows server web edition sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "linux mipsel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.19"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "bind -p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.6"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "access gateway standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5.7"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.2"
          },
          {
            "_id": null,
            "model": "windows server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "windows advanced server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "rtx1100",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p229",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "ios 12.0wc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.0xk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p115",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.5"
          },
          {
            "_id": null,
            "model": "networks self-service ccss7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "-0"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.04"
          },
          {
            "_id": null,
            "model": "computing cyberguard classic",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.13"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p286",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "netware sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.6.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 19",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms integrity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "netscaler build",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "8.157.3"
          },
          {
            "_id": null,
            "model": "ios 12.3yx",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.11"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p22",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.7"
          },
          {
            "_id": null,
            "model": "windows server datacenter edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p230",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "access gateway standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5.6"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "networks nsna switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4070"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.3"
          },
          {
            "_id": null,
            "model": "ios 12.1ay",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rt105p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bind beta",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.3"
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.2"
          },
          {
            "_id": null,
            "model": "ios 12.2by",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pardus",
            "version": "20070"
          },
          {
            "_id": null,
            "model": "bind 9.5.0a7",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.4"
          },
          {
            "_id": null,
            "model": "networks self-service peri workstation",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows advanced server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "vitalqip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "ios 12.2b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.03"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1.13.7"
          },
          {
            "_id": null,
            "model": "networks optical software upgrade manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bind b1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 89",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server standard edition sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "ios 12.2xu",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.4"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.20"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "bind 9.5.1b1",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "open-enterprise-server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "0"
          },
          {
            "_id": null,
            "model": "coat systems packetshaper",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "windows professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "rt102i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bind a4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.7"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "bind 9.5.0a6",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.1.8"
          },
          {
            "_id": null,
            "model": "rtv01",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.2ze",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.3"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.10"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.3"
          },
          {
            "_id": null,
            "model": "windows xp home sp2",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms integrity",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "networks ensm enterprise nms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "-10.4"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ios 12.4xa",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.2"
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.10"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "rta54i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.3xc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "coat systems packetshaper",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "8.3.2"
          },
          {
            "_id": null,
            "model": "windows server enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "bind p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.3"
          },
          {
            "_id": null,
            "model": "firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "hat enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.1"
          },
          {
            "_id": null,
            "model": "djbdns",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "djbdns",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.3ys",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "4,0 beta",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby pre1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.2"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.6"
          },
          {
            "_id": null,
            "model": "ios 12.4xl",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind rc2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.7"
          },
          {
            "_id": null,
            "model": "ios 12.4xt",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "7.3"
          },
          {
            "_id": null,
            "model": "windows server standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.1.1"
          },
          {
            "_id": null,
            "model": "multi network firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.2"
          },
          {
            "_id": null,
            "model": "bind a1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.3"
          },
          {
            "_id": null,
            "model": "net-dns/dnsmasq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "gentoo",
            "version": "2.43"
          },
          {
            "_id": null,
            "model": "bind p7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "ios 12.2xc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.7"
          },
          {
            "_id": null,
            "model": "networks self-service mps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "1000"
          },
          {
            "_id": null,
            "model": "windows advanced server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "1"
          },
          {
            "_id": null,
            "model": "corporate server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4.1"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.4"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5"
          },
          {
            "_id": null,
            "model": "windows xp media center edition sp3",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.3"
          },
          {
            "_id": null,
            "model": "windows xp tablet pc edition sp1",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.14"
          },
          {
            "_id": null,
            "model": "ios 12.2t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.4"
          },
          {
            "_id": null,
            "model": "ios 12.2xg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "mpe/ix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "7.5"
          },
          {
            "_id": null,
            "model": "rt200i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.3xh",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server enterprise edition sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "bind p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "bind 9.4.3b2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.11"
          },
          {
            "_id": null,
            "model": "windows server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "bind p5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "coat systems director",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "blue",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows server standard edition sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "windows xp media center edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "networks junose",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "7.1.1"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 88",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "rt58i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.0"
          },
          {
            "_id": null,
            "model": "networks junose",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.02"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1"
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.2"
          },
          {
            "_id": null,
            "model": "networks optical ambb",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.2"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2.9"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4"
          },
          {
            "_id": null,
            "model": "bind -p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.4"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "coat systems ishaper",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "blue",
            "version": "0"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.14"
          },
          {
            "_id": null,
            "model": "networks junose p0-1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "nios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "infoblox",
            "version": "4"
          },
          {
            "_id": null,
            "model": "ios 12.3yd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows datacenter server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "financials server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "navision",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "openbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openbsd",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "bind rc2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "networks optical rmbb",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.7"
          },
          {
            "_id": null,
            "model": "windows advanced server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "ios 12.3ym",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "corporate server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.1.2"
          },
          {
            "_id": null,
            "model": "ios 12.4mr",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind 9.5.0a3",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.10"
          },
          {
            "_id": null,
            "model": "messaging application server mm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "networks optical application platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "corporate server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.3"
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1.9"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.6"
          },
          {
            "_id": null,
            "model": "solaris 8 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.5"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.3"
          },
          {
            "_id": null,
            "model": "solaris 10 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0.17.6"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "networks screenos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.3"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.10"
          },
          {
            "_id": null,
            "model": "windows professional sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "networks srg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "appliance platform linux service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "1"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5"
          },
          {
            "_id": null,
            "model": "networks optical fmbb",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.4xn",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xe",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks self-service mps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "5000"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2"
          },
          {
            "_id": null,
            "model": "bind 9.3.5-p2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.1ea",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "tru64 unix b-3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.1.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "ios 12.3xf",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind 9.5.0b2",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.4xv"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "netware sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "ios 12.3yt",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.1.3"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.9"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.6"
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.02"
          },
          {
            "_id": null,
            "model": "windows xp home",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.1db",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server web edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "9"
          },
          {
            "_id": null,
            "model": "windows professional sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0.3"
          },
          {
            "_id": null,
            "model": "rt107e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.3"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.2"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3.3"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.8"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.1"
          },
          {
            "_id": null,
            "model": "windows advanced server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.5.4"
          },
          {
            "_id": null,
            "model": "bind a2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.1"
          },
          {
            "_id": null,
            "model": "gnu/*/linux 2.0-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "openwall",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.4xz",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "novell linux desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.10"
          },
          {
            "_id": null,
            "model": "firepass",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.3"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.1"
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.1"
          },
          {
            "_id": null,
            "model": "windows server itanium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "20030"
          },
          {
            "_id": null,
            "model": "siparator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6"
          },
          {
            "_id": null,
            "model": "wanjet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "5.0.2"
          },
          {
            "_id": null,
            "model": "rtx1500",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2zd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "srt100",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "ios 12.1ex",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "netscaler build",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "8.047.8"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.7"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "corporate server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "ios 12.3yi",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vitalqip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "7.x"
          },
          {
            "_id": null,
            "model": "ios 12.3xq",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.0xe",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.4xe",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rt103i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "windows server itanium sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "dns library pydns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "python",
            "version": "2.3"
          },
          {
            "_id": null,
            "model": "windows xp home sp3",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "vitalqip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.6"
          },
          {
            "_id": null,
            "model": "ios 12.0xr",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks multimedia comm mcs5100",
            "scope": null,
            "trust": 0.3,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": "bind a3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "siparator",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6.4"
          },
          {
            "_id": null,
            "model": "ios 12.4t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.13"
          },
          {
            "_id": null,
            "model": "ios 12.2yn",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks junos 8.5.r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.9"
          },
          {
            "_id": null,
            "model": "ios 12.2bw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2xl",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.01"
          },
          {
            "_id": null,
            "model": "3.1 rc3",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server datacenter edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 01",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "bind rc2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 92",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rt80i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "2"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "ios 12.3xd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3va",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.1"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux enterprise desktop sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.6"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.0.01"
          },
          {
            "_id": null,
            "model": "rtx2000",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "networks bcm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "200"
          },
          {
            "_id": null,
            "model": "ios 12.2yv",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.10"
          },
          {
            "_id": null,
            "model": "-current",
            "scope": null,
            "trust": 0.3,
            "vendor": "openbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.4"
          },
          {
            "_id": null,
            "model": "rt100i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "networks junose p0-1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "dns one appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "infoblox",
            "version": "2"
          },
          {
            "_id": null,
            "model": "bind -p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.2"
          },
          {
            "_id": null,
            "model": "coat systems proxysg",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "5.2.4.3"
          },
          {
            "_id": null,
            "model": "ios 12.4xd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks self-service ccxml",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.6"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.12"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.10"
          },
          {
            "_id": null,
            "model": "firepass",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.0.2"
          },
          {
            "_id": null,
            "model": "windows xp tablet pc edition",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.4md",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2.1.7"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pardus",
            "version": "20080"
          },
          {
            "_id": null,
            "model": "windows server enterprise edition sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "networks self-service peri application",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "linux enterprise sdk 10.sp1",
            "scope": null,
            "trust": 0.3,
            "vendor": "suse",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.01"
          },
          {
            "_id": null,
            "model": "coat systems ishaper",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "8.3.2"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2007.1"
          },
          {
            "_id": null,
            "model": "matsumoto ruby pre4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.2"
          },
          {
            "_id": null,
            "model": "windows xp professional edition sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "x64"
          },
          {
            "_id": null,
            "model": "nonstop server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "6"
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.2"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.12"
          },
          {
            "_id": null,
            "model": "netware sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.04"
          },
          {
            "_id": null,
            "model": "netware sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.1.01"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "hat enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p71",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.7"
          },
          {
            "_id": null,
            "model": "ios 12.3bw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.04"
          },
          {
            "_id": null,
            "model": "ios 12.3yf",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.5"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.3.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.8"
          },
          {
            "_id": null,
            "model": "ios 12.3yz",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3yg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2zg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows xp professional sp3",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2yt",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "siparator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6.1"
          },
          {
            "_id": null,
            "model": "firewall",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ingate",
            "version": "4.6.4"
          },
          {
            "_id": null,
            "model": "ios 12.3t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xs",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.15"
          },
          {
            "_id": null,
            "model": "open enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "0"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.01"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.3"
          },
          {
            "_id": null,
            "model": "firepass",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "5.5.2"
          },
          {
            "_id": null,
            "model": "bind 9.5.0b1",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2007.1"
          },
          {
            "_id": null,
            "model": "linux lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.10"
          },
          {
            "_id": null,
            "model": "bind b1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.1.2"
          },
          {
            "_id": null,
            "model": "netware sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "access gateway standard edition rev a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5.7"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.3"
          },
          {
            "_id": null,
            "model": "bind 9.5.0a5",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "windows xp tablet pc edition sp2",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "linux enterprise server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "ios 12.4xj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "software vantio",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nominum",
            "version": "3"
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "firepass",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.4(21)"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.5"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.5"
          },
          {
            "_id": null,
            "model": "rta50i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "appliance platform linux service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "2"
          },
          {
            "_id": null,
            "model": "ios 12.4xc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.2"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p230",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.5"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.5.11"
          },
          {
            "_id": null,
            "model": "network registar",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3.1.5"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.0.2.8"
          },
          {
            "_id": null,
            "model": "networks junose p0-7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "7.0.1"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.18"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.13"
          },
          {
            "_id": null,
            "model": "ios 12.2yu",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.10"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.7"
          },
          {
            "_id": null,
            "model": "windows datacenter server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "rt60w",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.2"
          },
          {
            "_id": null,
            "model": "windows xp professional sp1",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "rt57i",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server itanium sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "windows server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.1.1"
          },
          {
            "_id": null,
            "model": "bind rc3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.7"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1.3"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p114",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "linux lts lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "networks ensm enterprise nms",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "-10.5"
          },
          {
            "_id": null,
            "model": "rt140p",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.2xk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p287",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.6"
          },
          {
            "_id": null,
            "model": "messaging application server mm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.8"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1.15"
          },
          {
            "_id": null,
            "model": "wanjet",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux enterprise desktop sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.6"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.1.10"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.2"
          },
          {
            "_id": null,
            "model": "enterprise linux ws ia64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.02"
          },
          {
            "_id": null,
            "model": "linux m68k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.5"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.7"
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.1.4"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.11"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "bind rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "bind b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3.3"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "3,1 rc1",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.9"
          },
          {
            "_id": null,
            "model": "networks self-service web centric ccxml",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "2.5.5"
          },
          {
            "_id": null,
            "model": "access gateway standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "bind -p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4.1"
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "dnsmasq",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "dnsmasq",
            "version": "2.4.1"
          },
          {
            "_id": null,
            "model": "linux hppa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.04"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "ios 12.3yu",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks self-service mps",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "10000"
          },
          {
            "_id": null,
            "model": "matsumoto ruby",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.9-2"
          },
          {
            "_id": null,
            "model": "networks junose",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "7.0.2"
          },
          {
            "_id": null,
            "model": "tru64 unix b-4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.1.0"
          },
          {
            "_id": null,
            "model": "ios 12.3xa",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.4"
          },
          {
            "_id": null,
            "model": "netware sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "networks trail manager route advisor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "matsumoto ruby pre2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.2"
          },
          {
            "_id": null,
            "model": "ios 12.4xb",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "solaris 9 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 02",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "coat systems director",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "5.2.2.5"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.04"
          },
          {
            "_id": null,
            "model": "enterprise manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.4.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.1.1"
          },
          {
            "_id": null,
            "model": "networks junos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "8.4"
          },
          {
            "_id": null,
            "model": "ios 12.4xw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "access gateway advanced edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "citrix",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "windows datacenter server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "netware sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "netware sp7",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.5"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "bind b1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "computing sidewinder g2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "6.1.0.01"
          },
          {
            "_id": null,
            "model": "hat enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "4"
          },
          {
            "_id": null,
            "model": "ios 12.4xm",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rt105e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.4sw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rt140f",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.11"
          },
          {
            "_id": null,
            "model": "firepass",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "6.0.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.04"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0.5"
          },
          {
            "_id": null,
            "model": "ios 12.3yk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vitalqip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "lucent",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.4"
          },
          {
            "_id": null,
            "model": "windows professional sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.12"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5"
          },
          {
            "_id": null,
            "model": "rt56v",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rtv700",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "netware sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.5.7"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.0.2"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "windows xp professional",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.3"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "netware sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "bind b2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.5"
          },
          {
            "_id": null,
            "model": "networks junose",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "ios 12.2xt",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rtw65i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "ios 12.1xc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "rt300i",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "bind p4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "gnu/*/linux 2.0-current",
            "scope": null,
            "trust": 0.3,
            "vendor": "openwall",
            "version": null
          },
          {
            "_id": null,
            "model": "bind -p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.7"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "7.04"
          },
          {
            "_id": null,
            "model": "networks self-service wvads",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "hat enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.1"
          },
          {
            "_id": null,
            "model": "desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "secure name server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nixu",
            "version": "1"
          },
          {
            "_id": null,
            "model": "matsumoto ruby pre3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.2"
          },
          {
            "_id": null,
            "model": "windows server web edition sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "ios 12.2yo",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "river systems linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "wind",
            "version": "0"
          },
          {
            "_id": null,
            "model": "coat systems proxysg",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "4.2.8.7"
          },
          {
            "_id": null,
            "model": "ios 12.4xq",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "windows xp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "0"
          },
          {
            "_id": null,
            "model": "messaging application server mm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "ios 12.2zj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.9"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "3.0.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "software caching name server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nominum",
            "version": "3"
          },
          {
            "_id": null,
            "model": "ios 12.2yl",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows xp media center edition sp2",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "advanced workstation for the itanium processor ia64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "rta55i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "hat enterprise linux as ia64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "bind rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "windows server datacenter edition itanium",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "20030"
          },
          {
            "_id": null,
            "model": "ios 12.3xj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "messaging application server mm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p72",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.7"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.14"
          },
          {
            "_id": null,
            "model": "coat systems proxyra",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "blue",
            "version": "0"
          },
          {
            "_id": null,
            "model": "coat systems proxyra",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "2.3.2.1"
          },
          {
            "_id": null,
            "model": "rtx1000",
            "scope": null,
            "trust": 0.3,
            "vendor": "yamaha",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.1.2"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.7"
          },
          {
            "_id": null,
            "model": "linux -current",
            "scope": null,
            "trust": 0.3,
            "vendor": "slackware",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.1ye",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.5"
          },
          {
            "_id": null,
            "model": "networks self-service speech server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "hat enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "red",
            "version": "5"
          },
          {
            "_id": null,
            "model": "bind a2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.5"
          },
          {
            "_id": null,
            "model": "bind a6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 22",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "bind 9.5.0a4",
            "scope": null,
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "3-dns",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.6.4"
          },
          {
            "_id": null,
            "model": "mac os server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "1.2-par",
            "scope": null,
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xr",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "current",
            "scope": null,
            "trust": 0.3,
            "vendor": "netbsd",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "coat systems director",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "blue",
            "version": "4.2.2.4"
          },
          {
            "_id": null,
            "model": "ios 12.2ym",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks nsna switch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "4050"
          },
          {
            "_id": null,
            "model": "ios 12.0t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "netware sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "rta52i",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.11"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.0.02"
          },
          {
            "_id": null,
            "model": "computing sidewinder g2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "6.1.0.02"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.4.4"
          },
          {
            "_id": null,
            "model": "windows server standard edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "ios 12.2cz",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.1t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux desktop workstation client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "ios 12.2zf",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "bind 9.5.0-p2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "rtw65b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "2.0.1"
          },
          {
            "_id": null,
            "model": "advanced workstation for the itanium processor",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "2.1"
          },
          {
            "_id": null,
            "model": "windows server enterprise edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003x64"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.7"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 13",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "netware",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "bind p3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.2"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "0"
          },
          {
            "_id": null,
            "model": "openbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "openbsd",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 91",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.5.1"
          },
          {
            "_id": null,
            "model": "ios 12.3tpc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.0.01"
          },
          {
            "_id": null,
            "model": "novell linux pos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9"
          },
          {
            "_id": null,
            "model": "netware sp5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "bind -p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.2.6"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 64",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "net-dns/dnsmasq",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "gentoo",
            "version": "2.45"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0.3"
          },
          {
            "_id": null,
            "model": "networks junose p0-6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "windows xp media center edition sp1",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "netware sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "novell",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "windows professional sp4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.2.6"
          },
          {
            "_id": null,
            "model": "ipcop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ipcop",
            "version": "1.4.16"
          },
          {
            "_id": null,
            "model": "solaris 10 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.03"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "ios 12.3ya",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks self service voicexml",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "ios 12.4xy",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "cns network registrar",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "rt140e",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yamaha",
            "version": "0"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.0.01"
          },
          {
            "_id": null,
            "model": "windows xp professional sp2",
            "scope": null,
            "trust": 0.3,
            "vendor": "microsoft",
            "version": null
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "9.1.3"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2.7"
          },
          {
            "_id": null,
            "model": "opensuse",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10.3"
          },
          {
            "_id": null,
            "model": "-par",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pdnsd",
            "version": "1.2.6"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "coat systems proxysg",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "blue",
            "version": "0"
          },
          {
            "_id": null,
            "model": "networks optical trail manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "nortel",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.0"
          },
          {
            "_id": null,
            "model": "solaris 9 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "bind 9.4.2-p2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "isc",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2xb",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2zb",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.0db",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "networks adonis",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "bluecat",
            "version": "5.1.7"
          },
          {
            "_id": null,
            "model": "computing sidewinder software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.2.1.02"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.1.01"
          },
          {
            "_id": null,
            "model": "windows server datacenter edition sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.0.0.04"
          },
          {
            "_id": null,
            "model": "ios 12.0dc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "windows server sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          },
          {
            "_id": null,
            "model": "ios 12.2tpc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p231",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.5"
          },
          {
            "_id": null,
            "model": "bind",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "isc",
            "version": "8.3.1"
          },
          {
            "_id": null,
            "model": "ios 12.2yj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "application \u0026 content networking software",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2.7"
          },
          {
            "_id": null,
            "model": "mac os",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "x10.4.2"
          },
          {
            "_id": null,
            "model": "windows server datacenter edition itanium sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2003"
          },
          {
            "_id": null,
            "model": "ipod touch",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1.4"
          },
          {
            "_id": null,
            "model": "computing sidewinder",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "secure",
            "version": "5.1.0.02"
          },
          {
            "_id": null,
            "model": "matsumoto ruby -p21",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "yukihiro",
            "version": "1.8.7"
          },
          {
            "_id": null,
            "model": "bigip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "4.5.9"
          },
          {
            "_id": null,
            "model": "iphone",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "apple",
            "version": "1.1"
          },
          {
            "_id": null,
            "model": "windows server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "microsoft",
            "version": "2000"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "BID",
            "id": "30131"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:sun:opensolaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Dan Kaminsky",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2008-5133",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "MEDIUM",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 8.6,
                "id": "CVE-2008-5133",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2008-5133",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#800113",
                "trust": 0.8,
                "value": "27.54"
              },
              {
                "author": "NVD",
                "id": "CVE-2008-5133",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200811-293",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "ipnat in IP Filter in Sun Solaris 10 and OpenSolaris before snv_96, when running on a DNS server with Network Address Translation (NAT) configured, improperly changes the source port of a packet when the destination port is the DNS port, which allows remote attackers to bypass an intended CVE-2008-1447 protection mechanism and spoof the responses to DNS queries sent by named. Deficiencies in the DNS protocol and common DNS implementations facilitate DNS cache poisoning attacks. Multiple vendors\u0027 implementations of the DNS protocol are prone to a DNS-spoofing vulnerability because the software fails to securely implement random values when performing DNS queries. \nSuccessfully exploiting this issue allows remote attackers to spoof DNS replies, allowing them to redirect network traffic and to launch man-in-the-middle attacks. \nThis issue affects Microsoft Windows DNS Clients and Servers, ISC BIND 8 and 9, and multiple Cisco IOS releases; other DNS implementations may also be vulnerable. ----------------------------------------------------------------------\n\nDo you need accurate and reliable IDS / IPS / AV detection rules?\n\nGet in-depth vulnerability details:\nhttp://secunia.com/binary_analysis/sample_analysis/\n\n----------------------------------------------------------------------\n\nTITLE:\npdnsd DNS Cache Poisoning and Denial of Service\n\nSECUNIA ADVISORY ID:\nSA31847\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/31847/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\npdnsd 1.x\nhttp://secunia.com/advisories/product/9584/\n\nDESCRIPTION:\nSome vulnerabilities have been reported in pdnsd, which can be\nexploited by malicious people to poison the DNS cache and cause a DoS\n(Denial of Service). \n\n1) A vulnerability is caused due to pdnsd not sufficiently\nrandomising the query port number, which can be exploited to poison\nthe DNS cache. \n\n2) An error exists within the \"p_exec_query()\" function in\nsrc/dns_query.c when processing long replies with many answer\nsections. This can be exploited to e.g. crash the service by sending\na specially crafted reply. \n\nThe vulnerabilities are reported in versions prior to version\n1.2.7-par. \n\nSOLUTION:\nUpdate to version 1.2.7-par. \n\nPROVIDED AND/OR DISCOVERED BY:\n1) Dan Kaminsky, IOActive. \n2) Reported by the vendor. \n\nORIGINAL ADVISORY:\nhttp://www.phys.uu.nl/~rombouts/pdnsd/ChangeLog\n\nOTHER REFERENCES:\nUS-CERT VU#800113:\nhttp://www.kb.cert.org/vuls/id/800113\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/advisories/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/advisories/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "BID",
            "id": "30131"
          },
          {
            "db": "PACKETSTORM",
            "id": "70051"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2008-5133",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "32625",
            "trust": 2.4
          },
          {
            "db": "VUPEN",
            "id": "ADV-2008-3129",
            "trust": 2.4
          },
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "trust": 1.2
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971",
            "trust": 0.8
          },
          {
            "db": "SUNALERT",
            "id": "245206",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "30131",
            "trust": 0.3
          },
          {
            "db": "SECUNIA",
            "id": "31847",
            "trust": 0.2
          },
          {
            "db": "PACKETSTORM",
            "id": "70051",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "BID",
            "id": "30131"
          },
          {
            "db": "PACKETSTORM",
            "id": "70051"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          }
        ]
      },
      "id": "VAR-200807-0659",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.38072691000000003
      },
      "last_update_date": "2026-03-09T21:24:34.870000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "245206",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245206-1"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "CWE-264",
            "trust": 1.8
          },
          {
            "problemtype": "CWE-Other",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 2.4,
            "url": "http://secunia.com/advisories/32625"
          },
          {
            "trust": 1.8,
            "url": "http://www.vupen.com/english/advisories/2008/3129"
          },
          {
            "trust": 1.6,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-245206-1"
          },
          {
            "trust": 1.0,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46721"
          },
          {
            "trust": 0.8,
            "url": "http://csrc.nist.gov/publications/nistpubs/800-81/sp800-81.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-dnsext-forgery-resilience"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3833"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc2827"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3704"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3013"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc4033"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/draft-ietf-tsvwg-port-randomization"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_random.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/dns_transmit.html"
          },
          {
            "trust": 0.8,
            "url": "http://cr.yp.to/djbdns/forgery.html"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/microsoftdns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind9dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.trusteer.com/bind8dns"
          },
          {
            "trust": 0.8,
            "url": "http://www.sans.org/reading_room/whitepapers/dns/1567.php"
          },
          {
            "trust": 0.8,
            "url": "http://blogs.iss.net/archive/morednsnat.html"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/cert/jvnvu800113/"
          },
          {
            "trust": 0.8,
            "url": "http://www.cert.at/static/cert.at-0802-dns-patchanalysis.pdf"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-5133"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2008-5133"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2008/3129"
          },
          {
            "trust": 0.4,
            "url": "http://www.phys.uu.nl/~rombouts/pdnsd/changelog"
          },
          {
            "trust": 0.4,
            "url": "http://www.kb.cert.org/vuls/id/800113"
          },
          {
            "trust": 0.3,
            "url": "http://blogs.sun.com/security/entry/isrs_available_for_bind_dns"
          },
          {
            "trust": 0.3,
            "url": "http://support.apple.com/kb/ht3137"
          },
          {
            "trust": 0.3,
            "url": "http://blog.ncircle.com/blogs/sync/archives/2008/08/apple_dns_patch_fails_to_rando.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.isc.org/index.pl?/sw/bind/view/?release=9.3.5-p2"
          },
          {
            "trust": 0.3,
            "url": "http://www.isc.org/index.pl?/sw/bind/view/?release=9.4.2-p2"
          },
          {
            "trust": 0.3,
            "url": "http://www.isc.org/index.pl?/sw/bind/view/?release=9.5.0-p2"
          },
          {
            "trust": 0.3,
            "url": "http://www.bluecatnetworks.com/clientsupport/"
          },
          {
            "trust": 0.3,
            "url": "http://www.checkpoint.com"
          },
          {
            "trust": 0.3,
            "url": "http://www.tinydns.org/"
          },
          {
            "trust": 0.3,
            "url": "http://blog.metasploit.com/2008/07/on-dns-attacks-in-wild-and-journalistic.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.cisco.com/web/about/security/intelligence/dns-bcp.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.securebits.org/dnsmre.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.f5.com/products/big-ip/"
          },
          {
            "trust": 0.3,
            "url": "http://www.f5.com/"
          },
          {
            "trust": 0.3,
            "url": "http://support.citrix.com/article/ctx116762"
          },
          {
            "trust": 0.3,
            "url": "http://www.sec-consult.com/files/whitepaper-dns-node-redelegation.pdf"
          },
          {
            "trust": 0.3,
            "url": "http://www.us-cert.gov/current/index.html#internet_system_consortium_releases_bind"
          },
          {
            "trust": 0.3,
            "url": "http://www.ipcop.org/"
          },
          {
            "trust": 0.3,
            "url": "http://www.microsoft.com/windows/default.mspx"
          },
          {
            "trust": 0.3,
            "url": "http://www.ruby-lang.org/en/news/2008/08/08/multiple-vulnerabilities-in-ruby/"
          },
          {
            "trust": 0.3,
            "url": "http://www.openbsd.org/errata42.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.openbsd.org/errata43.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.ingate.com/relnote-464.php"
          },
          {
            "trust": 0.3,
            "url": "http://darkoz.com/?p=15"
          },
          {
            "trust": 0.3,
            "url": "http://www.bluecatnetworks.com/"
          },
          {
            "trust": 0.3,
            "url": "http://f5.com/products/firepass/"
          },
          {
            "trust": 0.3,
            "url": "http://www.vmware.com"
          },
          {
            "trust": 0.3,
            "url": "http://www.windriver.com/"
          },
          {
            "trust": 0.3,
            "url": "http://www.rtpro.yamaha.co.jp/rt/faq/security/vu800113.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.zonealarm.com/"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/500540"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/495304"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494716"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494055"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/495034"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494305"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494493"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494108"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/494818"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/495212"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/elmodocs2/security/asa-2008-288.htm"
          },
          {
            "trust": 0.3,
            "url": "http://www.isc.org/index.pl?/sw/bind/bind-security.php"
          },
          {
            "trust": 0.3,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20080708-dns.shtml"
          },
          {
            "trust": 0.3,
            "url": "http://support.citrix.com/article/ctx117991"
          },
          {
            "trust": 0.3,
            "url": "http://hypersonic.bluecoat.com/support/securityadvisories/dns_cache_poisoning"
          },
          {
            "trust": 0.3,
            "url": "http://www13.itrc.hp.com/service/cki/docdisplay.do?docid=emr_na-c01660723"
          },
          {
            "trust": 0.3,
            "url": "http://h20000.www2.hp.com/bizsupport/techsupport/document.jsp?objectid=c01662368"
          },
          {
            "trust": 0.3,
            "url": "https://h20564.www2.hp.com/hpsc/doc/public/display?docid=emr_na-c04530690 "
          },
          {
            "trust": 0.3,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg1iz26670"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7dwr4j"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7ecl8q"
          },
          {
            "trust": 0.3,
            "url": "http://www.ipcop.org/index.php?name=news\u0026file=article\u0026sid=40"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/mimg-7dwr4z"
          },
          {
            "trust": 0.3,
            "url": "http://www.microsoft.com/technet/security/advisory/956187.mspx"
          },
          {
            "trust": 0.3,
            "url": "http://www.microsoft.com/technet/security/bulletin/ms08-037.mspx"
          },
          {
            "trust": 0.3,
            "url": "http://www1.alcatel-lucent.com/psirt/statements/2008003/dnscache.htm"
          },
          {
            "trust": 0.3,
            "url": "http://www.kb.cert.org/vuls/id/mapg-7g7nuc"
          },
          {
            "trust": 0.3,
            "url": "http://www.nominum.com/asset_upload_file741_2661.pdf"
          },
          {
            "trust": 0.3,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026documentoid=762152\u0026poid="
          },
          {
            "trust": 0.3,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026id=751322"
          },
          {
            "trust": 0.3,
            "url": "http://rhn.redhat.com/errata/rhsa-2008-0533.html"
          },
          {
            "trust": 0.3,
            "url": "http://rhn.redhat.com/errata/rhsa-2008-0789.html"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-239392-1"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-240048-1"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-245206-1"
          },
          {
            "trust": 0.3,
            "url": "http://www.novell.com/support/viewcontent.do?externalid=7000912\u0026sliceid=1"
          },
          {
            "trust": 0.3,
            "url": "http://up2date.astaro.com/2008/08/up2date_7202_released.html"
          },
          {
            "trust": 0.3,
            "url": "http://up2date.astaro.com/2008/09/up2date_6314_released.html"
          },
          {
            "trust": 0.3,
            "url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026id=4527"
          },
          {
            "trust": 0.3,
            "url": "http://support.citrix.com/article/ctx118183"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/binary_analysis/sample_analysis/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/31847/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/product/9584/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          },
          {
            "db": "BID",
            "id": "30131"
          },
          {
            "db": "PACKETSTORM",
            "id": "70051"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971"
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "db": "BID",
            "id": "30131",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "70051",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2008-001971",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2008-5133",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2008-07-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2008-07-08T00:00:00",
            "db": "BID",
            "id": "30131",
            "ident": null
          },
          {
            "date": "2008-09-17T04:00:29",
            "db": "PACKETSTORM",
            "id": "70051",
            "ident": null
          },
          {
            "date": "2008-07-08T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200811-293",
            "ident": null
          },
          {
            "date": "2008-12-17T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2008-001971",
            "ident": null
          },
          {
            "date": "2008-11-18T16:00:00.327000",
            "db": "NVD",
            "id": "CVE-2008-5133",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2014-04-14T00:00:00",
            "db": "CERT/CC",
            "id": "VU#800113",
            "ident": null
          },
          {
            "date": "2015-04-13T21:35:00",
            "db": "BID",
            "id": "30131",
            "ident": null
          },
          {
            "date": "2008-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200811-293",
            "ident": null
          },
          {
            "date": "2008-12-17T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2008-001971",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2008-5133",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Multiple DNS implementations vulnerable to cache poisoning",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#800113"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "permissions and access control",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200811-293"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200512-0678

    Vulnerability from variot - Updated: 2026-03-09 21:08

    The Internet Key Exchange version 1 (IKEv1) implementations in Fortinet FortiOS 2.50, 2.80 and 3.0, FortiClient 2.0,; and FortiManager 2.80 and 3.0 allow remote attackers to cause a denial of service (termination of a process that is automatically restarted) via IKE packets with invalid values of certain IPSec attributes, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the vendor advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Fortinet FortiGate, FortiManager, and FortiClient products are prone to denial of service vulnerabilities. These issues are due to security flaws in Fortinet's IPSec implementation. These vulnerabilities may be triggered by malformed IKE traffic. This issue was discovered with the PROTOS ISAKMP Test Suite and is related to the handling of malformed IKEv1 traffic.

    For more information: SA17553

    Several other bugs have also been fixed in this update. IKE will be reportedly be automatically restarted by FortiOS when it crashes.

    FortiGate (version 2.80): Apply MR12 when available or contact technical support for a special build.

    FortiGate (version 2.50): No patch available at this time.

    FortiManager (version 2.80): No patch available at this time.

    FortiClient: No patch available at this time.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200512-0678",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "3.0"
          },
          {
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.80"
          },
          {
            "model": "fortios",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.50"
          },
          {
            "model": "fortimanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "3.0"
          },
          {
            "model": "fortimanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.80"
          },
          {
            "model": "forticlient",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "fortinet",
            "version": "2.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15997"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "15997"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-4570",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-4570",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-15778",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-4570",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200512-619",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-15778",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementations in Fortinet FortiOS 2.50, 2.80 and 3.0, FortiClient 2.0,; and FortiManager 2.80 and 3.0 allow remote attackers to cause a denial of service (termination of a process that is automatically restarted) via IKE packets with invalid values of certain IPSec attributes, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the vendor advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Fortinet FortiGate, FortiManager, and FortiClient products are prone to denial of service vulnerabilities. These issues are due to security flaws in Fortinet\u0027s IPSec implementation. These vulnerabilities may be triggered by malformed IKE traffic. \nThis issue was discovered with the PROTOS ISAKMP Test Suite and is related to the handling of malformed IKEv1 traffic. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. IKE will\nbe reportedly be automatically restarted by FortiOS when it crashes. \n\nFortiGate (version 2.80):\nApply MR12 when available or contact technical support for a special\nbuild. \n\nFortiGate (version 2.50):\nNo patch available at this time. \n\nFortiManager (version 2.80):\nNo patch available at this time. \n\nFortiClient:\nNo patch available at this time. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15997"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "43036"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "15997",
            "trust": 2.0
          },
          {
            "db": "SECUNIA",
            "id": "18446",
            "trust": 1.8
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-0182",
            "trust": 1.7
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4570",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "43036",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "db": "BID",
            "id": "15997"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "43036"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "id": "VAR-200512-0678",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2026-03-09T21:08:13.620000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.1,
            "url": "http://www.fortinet.com/fortiguardcenter/vu226364.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/15997"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/18446"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.2,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2006/0182"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/0182"
          },
          {
            "trust": 0.3,
            "url": "http://www.fortinet.com/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6800/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6802/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/18446/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6801/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6799/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2289/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "db": "BID",
            "id": "15997"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "43036"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "db": "BID",
            "id": "15997"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "43036"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "date": "2005-12-08T00:00:00",
            "db": "BID",
            "id": "15997"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2006-01-14T05:07:24",
            "db": "PACKETSTORM",
            "id": "43036"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "date": "2005-12-29T11:03:00",
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-15778"
          },
          {
            "date": "2005-12-08T00:00:00",
            "db": "BID",
            "id": "15997"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-4570"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-619"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0015

    Vulnerability from variot - Updated: 2026-03-09 20:04

    Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Cisco advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. Various Cisco IOS, PIX Firewall, Firewall Services Module (FWSM), VPN 3000 Series Concentrator, and MDS Series SanOS releases are prone to denial of service attacks. These issues are due to security flaws in Cisco's IPSec implementation. The vulnerabilities may be triggered by malformed IKE traffic. Successful attacks will cause most affected devices to restart. For Cisco MDS Series devices, this is limited to causing the IKE process to restart. IP Security or IPSec (full name Internet Protocol Security) is a set of IP security protocols established by the IPSec group of the Internet Engineering Task Force (IETF). Access control, data source address verification, data integrity check and prevention of replay attacks. Vulnerabilities exist in the handling of IPSec IKE messages in several Cisco products. IPSec's PROTOS test suite can test the design limitations of IPSec implementations by sending malformed IKE messages to target devices.

    TITLE: IPsec-Tools ISAKMP IKE Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17668

    VERIFY ADVISORY: http://secunia.com/advisories/17668/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    SOFTWARE: IPsec-Tools 0.x http://secunia.com/product/3352/

    DESCRIPTION: A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious people to cause a DoS (Denial of Service).

    The vulnerability is caused due to a NULL pointer dereferencing error when processing certain ISAKMP packets in aggressive mode.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    SOLUTION: Update to version 0.6.3. http://sourceforge.net/project/showfiles.php?group_id=74601&package_id=74949&release_id=372605

    PROVIDED AND/OR DISCOVERED BY: The vendor credits Adrian Portelli.

    ORIGINAL ADVISORY: http://sourceforge.net/mailarchive/forum.php?thread_id=9017454&forum_id=32000 http://sourceforge.net/project/shownotes.php?release_id=372605&group_id=74601

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 2.7,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3yw"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.4xb"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.4xa"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3yt"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3yq"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3ym"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3yx"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.4t"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "cisco",
            "version": "12.3yu"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 1.5,
            "vendor": "cisco",
            "version": "30002.5.2"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "cisco",
            "version": "1.1.3"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "cisco",
            "version": "1.1.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.3,
            "vendor": "cisco",
            "version": "12.3xx"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "pix/asa",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.1,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.2"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5.2.d"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.7.1"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yk"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.6"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xd"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2\\(3.100\\)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2.3_\\(110\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1\\(6\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(3.210\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.6.7"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(9\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1\\(6b\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3\\(3\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5.2.c"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "mds 9000 san-os",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.3\\(3.33\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "mds 9000 san-os",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0\\(0.86\\)"
          },
          {
            "_id": null,
            "model": "mds 9000",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "*"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.4"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xg"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(5\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(6\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.4"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(1\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(7\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.4"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1\\(rel\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3t"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xq"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5.2.a"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3ya"
          },
          {
            "_id": null,
            "model": "adaptive security appliance software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1\\(1\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.5"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2\\(1\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2\\(2\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(3\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.5.b"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "*"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xu"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.4\\(8\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.3.a"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xe"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.7"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xs"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.4\\(4\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1\\(4\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.6.7d"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.1_\\(3.005\\)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3.3_\\(133\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.1"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3\\(1.200\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.4\\(7.202\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yh"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.1"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(1\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.1.2"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(4\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0.3.b"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xf"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xi"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yd"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1\\(2\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.5.b"
          },
          {
            "_id": null,
            "model": "mds 9000 san-os",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "1.3\\(4a\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.2\\(1\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5.3"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yf"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3\\(3.109\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yj"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3\\(3.102\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.7.1.f"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3tpc"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.2\\(2\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.2\\(5\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(4.101\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yi"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.1\\(4\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.2\\(2\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xj"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5.2.f"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.5.2.b"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.2sxd"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xh"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.5\\(rel\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.3\\(2\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1\\(5\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xm"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xw"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.7.a"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "3.6.1"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1\\(3\\)"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "vpn 3000 concentrator series software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "4.1.7.b"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1.5\\(104\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3yg"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2\\(3\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xk"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3ys"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.2.2_.111"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3\\(1\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "6.0\\(2\\)"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "2.1_\\(0.208\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.3\\(2\\)"
          },
          {
            "_id": null,
            "model": "pix firewall software",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "5.1\\(4.206\\)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "cisco",
            "version": "12.3xr"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "_id": null,
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "_id": null,
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "_id": null,
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "_id": null,
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "30003.1"
          },
          {
            "_id": null,
            "model": "ios 12.4",
            "scope": "ne",
            "trust": 0.6,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "30003.0.3"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5.3"
          },
          {
            "_id": null,
            "model": "ios 12.3xd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(7)"
          },
          {
            "_id": null,
            "model": "ios 12.3yk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.0.4"
          },
          {
            "_id": null,
            "model": "vpn concentrator 4.1.7.a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "ios 12.3xu",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "ios 12.4 t",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2.1"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.0.1"
          },
          {
            "_id": null,
            "model": "ios 12.3yj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3.2"
          },
          {
            "_id": null,
            "model": "ios 12.3yh",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2(5)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.1.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3(3.109)"
          },
          {
            "_id": null,
            "model": "ios 12.3xi",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1(4.206)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.0"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "ios 12.3xh",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(3)"
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.1(0.208)"
          },
          {
            "_id": null,
            "model": "vpn concentrator .b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.0.5"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.4(8)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0(4)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(6)"
          },
          {
            "_id": null,
            "model": "ios 12.4 t2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.1.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(9)"
          },
          {
            "_id": null,
            "model": "ios 12.3yf",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(5)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.6"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(4)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.0"
          },
          {
            "_id": null,
            "model": "ios 12.3yg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1.6"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(1)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1.4"
          },
          {
            "_id": null,
            "model": "pix firewall b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1.6"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "ios 12.3xj",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xs",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3 t5",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(2)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "ios 12.3xw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2(1)"
          },
          {
            "_id": null,
            "model": "ios 12.3yw",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3 ym4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "firewall services module",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.1(3.005)"
          },
          {
            "_id": null,
            "model": "ios 12.3yd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30002.0"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.6.7"
          },
          {
            "_id": null,
            "model": "vpn concentrator f",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.7.1"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2(3)"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90001.3"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0(4.101)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "ios 12.3ym",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2(2)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2.3(110)"
          },
          {
            "_id": null,
            "model": "vpn concentrator .b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.1.5"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(3.210)"
          },
          {
            "_id": null,
            "model": "ios 12.3xr",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2(3.100)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.5"
          },
          {
            "_id": null,
            "model": "ios 12.3yx",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator 4.1.7.b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3000"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2.3"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ios 12.3 t8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0.3"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5.2"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0.4"
          },
          {
            "_id": null,
            "model": "ios 12.2sxd",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xe",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xf",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3 yq4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.2 sxe",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3(1.200)"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5.1"
          },
          {
            "_id": null,
            "model": "ios 12.3yt",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3tpc",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.4"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "ios 12.3xk",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1.5(104)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "ios 12.3yq",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator d",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.6.7"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3.3(133)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0(1)"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "9000"
          },
          {
            "_id": null,
            "model": "ios 12.3ya",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(2)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.4(7.202)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "2.7"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90001.3(3.33)"
          },
          {
            "_id": null,
            "model": "ios 12.3yu",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.6.1"
          },
          {
            "_id": null,
            "model": "ios 12.3xm",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.4xa",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.4(4)"
          },
          {
            "_id": null,
            "model": "ios 12.3xg",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.1.1"
          },
          {
            "_id": null,
            "model": "ios 12.4xb",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3yi",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ios 12.3xq",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(1)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3(3)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3.1"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.2(5)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3(3.102)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3(2)"
          },
          {
            "_id": null,
            "model": "ios 12.4 xb",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "90002.0(0.86)"
          },
          {
            "_id": null,
            "model": "ios 12.4t",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30004.7.1"
          },
          {
            "_id": null,
            "model": "ios 12.3ys",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.2.2.111"
          },
          {
            "_id": null,
            "model": "vpn concentrator",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "30003.5.5"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.3(1)"
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0(2)"
          },
          {
            "_id": null,
            "model": "ios 12.2 sxd7",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.3(1)"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15401"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          }
        ]
      },
      "configurations": {
        "_id": null,
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "cpe_match": [
                  {
                    "cpe22Uri": "cpe:/o:misc:miraclelinux_asianux_server",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:sun:solaris",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:cisco:ios",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/h:cisco:pix_asa",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:symantec:enterprise_firewall",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:juniper:screenos",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/a:checkpoint:vpn-1_firewall-1",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:hp:hp-ux",
                    "vulnerable": true
                  },
                  {
                    "cpe22Uri": "cpe:/o:redhat:enterprise_linux",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Cisco Security bulletin NISCC  albatross@tim.it",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2005-3669",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3669",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 1.8,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "VHN-14877",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "severity": "MEDIUM",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3669",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "NVD",
                "id": "CVE-2005-3669",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-271",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULHUB",
                "id": "VHN-14877",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the Cisco advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Various Cisco IOS, PIX Firewall, Firewall Services Module (FWSM), VPN 3000 Series Concentrator, and MDS Series SanOS releases are prone to denial of service attacks.  These issues are due to security flaws in Cisco\u0027s IPSec implementation.  The vulnerabilities may be triggered by malformed IKE traffic. \nSuccessful attacks will cause most affected devices to restart.  For Cisco MDS Series devices, this is limited to causing the IKE process to restart. IP Security or IPSec (full name Internet Protocol Security) is a set of IP security protocols established by the IPSec group of the Internet Engineering Task Force (IETF). Access control, data source address verification, data integrity check and prevention of replay attacks. Vulnerabilities exist in the handling of IPSec IKE messages in several Cisco products. IPSec\u0027s PROTOS test suite can test the design limitations of IPSec implementations by sending malformed IKE messages to target devices. \n\nTITLE:\nIPsec-Tools ISAKMP IKE Message Processing Denial of Service\n\nSECUNIA ADVISORY ID:\nSA17668\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17668/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nIPsec-Tools 0.x\nhttp://secunia.com/product/3352/\n\nDESCRIPTION:\nA vulnerability has been reported in IPsec-Tools, which can be\nexploited by malicious people to cause a DoS (Denial of Service). \n\nThe vulnerability is caused due to a NULL pointer dereferencing error\nwhen processing certain ISAKMP packets in aggressive mode. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nSOLUTION:\nUpdate to version 0.6.3. \nhttp://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605\n\nPROVIDED AND/OR DISCOVERED BY:\nThe vendor credits Adrian Portelli. \n\nORIGINAL ADVISORY:\nhttp://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000\nhttp://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          },
          {
            "db": "BID",
            "id": "15401"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          }
        ],
        "trust": 2.79
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.3
          },
          {
            "db": "BID",
            "id": "15401",
            "trust": 2.8
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669",
            "trust": 2.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 2.5
          },
          {
            "db": "SECTRACK",
            "id": "1015202",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1015198",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1015201",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1015200",
            "trust": 1.7
          },
          {
            "db": "SECTRACK",
            "id": "1015199",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271",
            "trust": 0.7
          },
          {
            "db": "CISCO",
            "id": "20051114 MULTIPLE VULNERABILITIES FOUND BY PROTOS IPSEC TEST SUITE",
            "trust": 0.6
          },
          {
            "db": "OVAL",
            "id": "OVAL:ORG.MITRE.OVAL:DEF:5226",
            "trust": 0.6
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877"
          },
          {
            "db": "BID",
            "id": "15401"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          }
        ]
      },
      "id": "VAR-200511-0015",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14877"
          }
        ],
        "trust": 0.55652413
      },
      "last_update_date": "2026-03-09T20:04:28.216000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/HP-UX/HPSBUX02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/PSN-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/RHSA-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/RHSA/RHSA-2006-0267J.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.3,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.5,
            "url": "http://www.securityfocus.com/bid/15401"
          },
          {
            "trust": 2.5,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 2.0,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 1.7,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015198"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015199"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015200"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015201"
          },
          {
            "trust": 1.7,
            "url": "http://securitytracker.com/id?1015202"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.1,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5226"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3669"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://www.frsirt.com/english/advisories/2005/2406"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3669"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.6,
            "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:5226"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877"
          },
          {
            "db": "BID",
            "id": "15401"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "db": "VULHUB",
            "id": "VHN-14877",
            "ident": null
          },
          {
            "db": "BID",
            "id": "15401",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000681",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3669",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14877",
            "ident": null
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15401",
            "ident": null
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739",
            "ident": null
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-271",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000681",
            "ident": null
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3669",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364",
            "ident": null
          },
          {
            "date": "2018-10-30T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14877",
            "ident": null
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15401",
            "ident": null
          },
          {
            "date": "2009-03-04T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-271",
            "ident": null
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000681",
            "ident": null
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3669",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "_id": null,
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-271"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200912-0769

    Vulnerability from variot - Updated: 2026-03-07 20:12

    ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons. A novel traffic-loop vulnerability has been identified against certain implementations of UDP-based applications protocols. An unauthenticated attacker can use maliciously-crafted packets against a UDP-based vulnerable implementation of application protocols (e.g., DNS, NTP, TFTP) that can lead to Denial-of-Service (DOS) and/or abuse of resources.CVE-2009-3563 Unknown CVE-2024-1309 Unknown CVE-2024-2169 AffectedCVE-2009-3563 Unknown CVE-2024-1309 Unknown CVE-2024-2169 Affected. NTP for, mode 7 A vulnerability exists due to packet processing. NTP Then "restrict ... noquery" or "restrict ... ignore" There are no restrictions due to the settings of IP From the address, an invalid mode 7 request or mode 7 If you receive an error response, mode 7 Returns and logs the error message. NTP The sender address was spoofed. mode 7 A vulnerability exists due to packet processing.Service operation obstruction by a remote third party (DoS) You may be attacked. NTP is prone to a remote denial-of-service vulnerability because it fails to properly handle certain incoming network packets. An attacker can exploit this issue to cause the application to consume excessive CPU resources and fill disk space with log messages.


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3563


    Updated Packages:

    Mandriva Linux 2008.0: 7377623e9f89c5f6f6cc7af577974458 2008.0/i586/ntp-4.2.4-10.3mdv2008.0.i586.rpm 977fdaf289c9eff53fb6d563b8a60ede 2008.0/i586/ntp-client-4.2.4-10.3mdv2008.0.i586.rpm e2701dc192a578b141f9408d355522b6 2008.0/i586/ntp-doc-4.2.4-10.3mdv2008.0.i586.rpm 167e3a9dbf1bd10fd576e6a91a2cbc10 2008.0/SRPMS/ntp-4.2.4-10.3mdv2008.0.src.rpm

    Mandriva Linux 2008.0/X86_64: 4fa28ef04548ded3dc604ea61a671cc5 2008.0/x86_64/ntp-4.2.4-10.3mdv2008.0.x86_64.rpm b79353be7c2da1fadf3bc55c2c06a6a6 2008.0/x86_64/ntp-client-4.2.4-10.3mdv2008.0.x86_64.rpm c93dd45fc32ece044874c09aac85ce66 2008.0/x86_64/ntp-doc-4.2.4-10.3mdv2008.0.x86_64.rpm 167e3a9dbf1bd10fd576e6a91a2cbc10 2008.0/SRPMS/ntp-4.2.4-10.3mdv2008.0.src.rpm

    Mandriva Linux 2009.0: 6a38837b845970b62520f48273362485 2009.0/i586/ntp-4.2.4-18.5mdv2009.0.i586.rpm 4f9d98a186c4ca4348f8296fde0bf174 2009.0/i586/ntp-client-4.2.4-18.5mdv2009.0.i586.rpm 0ae26de5f1bddba4c2718a55463d94b7 2009.0/i586/ntp-doc-4.2.4-18.5mdv2009.0.i586.rpm 45b55bdbde84289b20e295b9dbf188fb 2009.0/SRPMS/ntp-4.2.4-18.5mdv2009.0.src.rpm

    Mandriva Linux 2009.0/X86_64: e31f3f71e730e5777d9832cd76430b17 2009.0/x86_64/ntp-4.2.4-18.5mdv2009.0.x86_64.rpm 67a998da616d287fe9e15092bbd45ff6 2009.0/x86_64/ntp-client-4.2.4-18.5mdv2009.0.x86_64.rpm ab02dd7a3457f0ba75248390827c69a4 2009.0/x86_64/ntp-doc-4.2.4-18.5mdv2009.0.x86_64.rpm 45b55bdbde84289b20e295b9dbf188fb 2009.0/SRPMS/ntp-4.2.4-18.5mdv2009.0.src.rpm

    Mandriva Linux 2009.1: b6597f0ee96ec99c7ddbe5e18a588e48 2009.1/i586/ntp-4.2.4-22.3mdv2009.1.i586.rpm 069667f851886c39daa0309a5e920619 2009.1/i586/ntp-client-4.2.4-22.3mdv2009.1.i586.rpm 9d5b87f008f00ad30b3c652e5f62eea2 2009.1/i586/ntp-doc-4.2.4-22.3mdv2009.1.i586.rpm e2686dd1237f529bb08f2837052fb46f 2009.1/SRPMS/ntp-4.2.4-22.3mdv2009.1.src.rpm

    Mandriva Linux 2009.1/X86_64: e88121b38c942c572b61ba7631130104 2009.1/x86_64/ntp-4.2.4-22.3mdv2009.1.x86_64.rpm c10eaf7ecbeb3b5db5eac978cb2ae78e 2009.1/x86_64/ntp-client-4.2.4-22.3mdv2009.1.x86_64.rpm 8ff34e79ed1f88fa2e7b7e8030232a30 2009.1/x86_64/ntp-doc-4.2.4-22.3mdv2009.1.x86_64.rpm e2686dd1237f529bb08f2837052fb46f 2009.1/SRPMS/ntp-4.2.4-22.3mdv2009.1.src.rpm

    Mandriva Linux 2010.0: 2913258a9be65654a3ce5e16c1bd5b25 2010.0/i586/ntp-4.2.4-27.1mdv2010.0.i586.rpm 90cf8d7f8fb468461f8b8baf7d97daa4 2010.0/i586/ntp-client-4.2.4-27.1mdv2010.0.i586.rpm 0b8527559ef05049461cea2f5a83bd6d 2010.0/i586/ntp-doc-4.2.4-27.1mdv2010.0.i586.rpm 7bbd4271086ace434dd8a958bc7c2488 2010.0/SRPMS/ntp-4.2.4-27.1mdv2010.0.src.rpm

    Mandriva Linux 2010.0/X86_64: 2e938e58d48f3f581ffaab085dacc1f2 2010.0/x86_64/ntp-4.2.4-27.1mdv2010.0.x86_64.rpm cde3421867c549169751f2964420a578 2010.0/x86_64/ntp-client-4.2.4-27.1mdv2010.0.x86_64.rpm d9799e7286a49420699d3995e8bc1e47 2010.0/x86_64/ntp-doc-4.2.4-27.1mdv2010.0.x86_64.rpm 7bbd4271086ace434dd8a958bc7c2488 2010.0/SRPMS/ntp-4.2.4-27.1mdv2010.0.src.rpm

    Corporate 3.0: 65dda36544e7a43175abfd64aa725b34 corporate/3.0/i586/ntp-4.2.0-2.4.C30mdk.i586.rpm a485cad0631598335af0e89ea399ff9d corporate/3.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm

    Corporate 3.0/X86_64: 44130a38552f20b3f34d176c47aa5aab corporate/3.0/x86_64/ntp-4.2.0-2.4.C30mdk.x86_64.rpm a485cad0631598335af0e89ea399ff9d corporate/3.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm

    Corporate 4.0: a2f5a598865d390f7c537fc9e1a9a758 corporate/4.0/i586/ntp-4.2.0-21.7.20060mlcs4.i586.rpm f7eb3884bc0aa71f8237d9500d24489e corporate/4.0/i586/ntp-client-4.2.0-21.7.20060mlcs4.i586.rpm d2ed46d981570f66763f85c822b14179 corporate/4.0/SRPMS/ntp-4.2.0-21.7.20060mlcs4.src.rpm

    Corporate 4.0/X86_64: 1bd4395c9c80b583bad4ce5085c0d557 corporate/4.0/x86_64/ntp-4.2.0-21.7.20060mlcs4.x86_64.rpm 95f812f672cf79fccee411154c23d6ee corporate/4.0/x86_64/ntp-client-4.2.0-21.7.20060mlcs4.x86_64.rpm d2ed46d981570f66763f85c822b14179 corporate/4.0/SRPMS/ntp-4.2.0-21.7.20060mlcs4.src.rpm

    Mandriva Enterprise Server 5: 16e3975f3e4bb9a830eb1e8166f2fec7 mes5/i586/ntp-4.2.4-18.5mdvmes5.i586.rpm 2af9623d6f3685d54dd4db31f9622f7a mes5/i586/ntp-client-4.2.4-18.5mdvmes5.i586.rpm 5abb771d456b4094d123c5cf24701aee mes5/i586/ntp-doc-4.2.4-18.5mdvmes5.i586.rpm 086a05988392a6602c023f4e453bcc32 mes5/SRPMS/ntp-4.2.4-18.5mdvmes5.src.rpm

    Mandriva Enterprise Server 5/X86_64: 9b40b186bf9ebeb70c1350f9a158ac92 mes5/x86_64/ntp-4.2.4-18.5mdvmes5.x86_64.rpm f4a42229dc9b408b04f0c83aa3a25720 mes5/x86_64/ntp-client-4.2.4-18.5mdvmes5.x86_64.rpm 2022447e5d9dbf6ee1a6e594935b1d04 mes5/x86_64/ntp-doc-4.2.4-18.5mdvmes5.x86_64.rpm 086a05988392a6602c023f4e453bcc32 mes5/SRPMS/ntp-4.2.4-18.5mdvmes5.src.rpm

    Multi Network Firewall 2.0: 56a2596fd513295f0700508c08a6a3da mnf/2.0/i586/ntp-4.2.0-2.4.C30mdk.i586.rpm f8218643f02c3168e0331852630835a0 mnf/2.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you.

    All packages are signed by Mandriva for security. You can obtain the GPG public key of the Mandriva Security Team by executing:

    gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

    You can view other update advisories for Mandriva Linux at:

    http://www.mandriva.com/security/advisories

    If you want to report vulnerabilities, please contact

    security_(at)_mandriva.com


    Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.9 (GNU/Linux)

    iD8DBQFLHtsAmqjQ0CJFipgRAi1pAKDUH87qI312n3XHGnl4TgVNC+IuvACbBhUw nLO5FqSyfvZaqSNZ93vTSUw= =XCg1 -----END PGP SIGNATURE----- . -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1


                   VMware Security Advisory
    

    Advisory ID: VMSA-2010-0004 Synopsis: ESX Service Console and vMA third party updates Issue date: 2010-03-03 Updated on: 2010-03-03 (initial release of advisory) CVE numbers: CVE-2009-2905 CVE-2008-4552 CVE-2008-4316 CVE-2009-1377 CVE-2009-1378 CVE-2009-1379 CVE-2009-1386 CVE-2009-1387 CVE-2009-0590 CVE-2009-4022 CVE-2009-3560 CVE-2009-3720 CVE-2009-2904 CVE-2009-3563 CVE-2009-2695 CVE-2009-2849 CVE-2009-2695 CVE-2009-2908 CVE-2009-3228 CVE-2009-3286 CVE-2009-3547 CVE-2009-3613 CVE-2009-3612 CVE-2009-3620 CVE-2009-3621 CVE-2009-3726 CVE-2008-3916 CVE-2009-1189 CVE-2009-0115


    1. Summary

    ESX Service Console updates for newt, nfs-utils, and glib2 packages.

    vMA updates for newt, nfs-util, glib2, kpartx, libvolume-id, device-mapper-multipath, fipscheck, dbus, dbus-libs, ed, openssl, bind, expat, openssh, ntp and kernel packages.

    1. Relevant releases

    VMware ESX 4.0.0 without patch ESX400-201002404-SG, ESX400-201002407-SG, ESX400-201002406-SG

    VMware vMA 4.0 before patch 3

    1. Problem Description

    a. vMA and Service Console update for newt to 0.52.2-12.el5_4.1

    Newt is a programming library for color text mode, widget based
    user interfaces. Newt can be used to add stacked windows, entry
    widgets, checkboxes, radio buttons, labels, plain text fields,
    scrollbars, etc., to text mode user interfaces.
    
    A heap-based buffer overflow flaw was found in the way newt
    processes content that is to be displayed in a text dialog box. 
    A local attacker could issue a specially-crafted text dialog box
    display request (direct or via a custom application), leading to a
    denial of service (application crash) or, potentially, arbitrary
    code execution with the privileges of the user running the
    application using the newt library.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2009-2905 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      ESX400-201002406-SG
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    b. vMA and Service Console update for vMA package nfs-utils to 1.0.9-42.el5

    The nfs-utils package provides a daemon for the kernel NFS server
    and related tools.
    
    It was discovered that nfs-utils did not use tcp_wrappers
    correctly.  Certain hosts access rules defined in "/etc/hosts.allow"
    and "/etc/hosts.deny" may not have been honored, possibly allowing
    remote attackers to bypass intended access restrictions.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2008-4552 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      ESX400-201002407-SG
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    c. vMA and Service Console package glib2 updated to 2.12.3-4.el5_3.1

    GLib is the low-level core library that forms the basis for projects
    

    such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and an object system.

    Multiple integer overflows in glib/gbase64.c in GLib before 2.20
    allow context-dependent attackers to execute arbitrary code via a
    long string that is converted either from or to a base64
    representation.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2008-4316 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      ESX400-201002404-SG
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    d. vMA and Service Console update for openssl to 0.9.8e-12.el5

    SSL is a toolkit implementing SSL v2/v3 and TLS protocols with full-
    strength cryptography world-wide.
    
    Multiple denial of service flaws were discovered in OpenSSL's DTLS
    implementation. A remote attacker could use these flaws to cause a
    DTLS server to use excessive amounts of memory, or crash on an
    invalid memory access or NULL pointer dereference.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the names CVE-2009-1377, CVE-2009-1378,
    CVE-2009-1379, CVE-2009-1386, CVE-2009-1387 to these issues.
    
    An input validation flaw was found in the handling of the BMPString
    and UniversalString ASN1 string types in OpenSSL's
    ASN1_STRING_print_ex() function. An attacker could use this flaw to
    create a specially-crafted X.509 certificate that could cause
    applications using the affected function to crash when printing
    certificate contents.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2009-0590 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    e. vMA and Service Console package bind updated to 9.3.6-4.P1.el5_4.1

    It was discovered that BIND was incorrectly caching responses
    without performing proper DNSSEC validation, when those responses
    were received during the resolution of a recursive client query
    that requested DNSSEC records but indicated that checking should be
    disabled. A remote attacker could use this flaw to bypass the DNSSEC
    validation check and perform a cache poisoning attack if the target
    BIND server was receiving such client queries.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2009-4022 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not applicable
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    f. vMA and Service Console package expat updated to 1.95.8-8.3.el5_4.2.

    Two buffer over-read flaws were found in the way Expat handled
    malformed UTF-8 sequences when processing XML files. A specially-
    crafted XML file could cause applications using Expat to fail while
    parsing the file.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the names CVE-2009-3560 and CVE-2009-3720 to these
    issues.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not applicable
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      affected, patch pending
    ESX            3.0.3     ESX      affected, patch pending
    ESX            2.5.5     ESX      affected, patch pending
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    g. vMA and Service Console package openssh update to 4.3p2-36.el5_4.2

    A Red Hat specific patch used in the openssh packages as shipped in
    Red Hat Enterprise Linux 5.4 (RHSA-2009:1287) loosened certain
    ownership requirements for directories used as arguments for the
    ChrootDirectory configuration options. A malicious user that also
    has or previously had non-chroot shell access to a system could
    possibly use this flaw to escalate their privileges and run
    commands as any system user.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2009-2904 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not applicable
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    h. vMA and Service Console package ntp updated to ntp-4.2.2p1-9.el5_4.1.i386.rpm

    A flaw was discovered in the way ntpd handled certain malformed NTP
    packets. ntpd logged information about all such packets and replied
    with an NTP packet that was treated as malformed when received by
    another ntpd.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the name CVE-2009-3563 to this issue.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not applicable
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      affected, patch pending
    ESX            3.0.3     ESX      affected, patch pending
    ESX            2.5.5     ESX      affected, patch pending
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    i. vMA update for package kernel to 2.6.18-164.9.1.el5

    Updated vMA package kernel addresses the security issues listed
    below.
    
    The Common Vulnerabilities and Exposures project (cve.mitre.org)
    has assigned the name CVE-2009-2849 to the security issue fixed in
    kernel 2.6.18-128.2.1
    
    The Common Vulnerabilities and Exposures project (cve.mitre.org)
    has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228,
    CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues
    fixed in kernel 2.6.18-128.6.1
    
    The Common Vulnerabilities and Exposures project (cve.mitre.org)
    has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621,
    CVE-2009-3726 to the security issues fixed in kernel
    2.6.18-128.9.1
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      affected, patch pending
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3 **
    
    • hosted products are VMware Workstation, Player, ACE, Fusion.

    ** vMA is updated to kernel version 2.6.18-164.9.1

    j. vMA 4.0 updates for the packages kpartx, libvolume-id, device-mapper-multipath, fipscheck, dbus, dbus-libs, and ed

    kpartx updated to 0.4.7-23.el5_3.4, libvolume-id updated to
    095-14.20.el5 device-mapper-multipath package updated to
    0.4.7-23.el5_3.4, fipscheck updated to 1.0.3-1.el5, dbus
    updated to 1.1.2-12.el5, dbus-libs updated to 1.1.2-12.el5,
    and ed package updated to 0.2-39.el5_2.
    
    The Common Vulnerabilities and Exposures Project (cve.mitre.org)
    has assigned the names CVE-2008-3916, CVE-2009-1189 and
    CVE-2009-0115 to these issues.
    
    The following table lists what action remediates the vulnerability
    (column 4) if a solution is available.
    
    VMware         Product   Running  Replace with/
    Product        Version   on       Apply Patch
    =============  ========  =======  =================
    VirtualCenter  any       Windows  not affected
    
    hosted *       any       any      not affected
    
    ESXi           any       ESXi     not affected
    
    ESX            4.0       ESX      not affected
    ESX            3.5       ESX      not affected
    ESX            3.0.3     ESX      not affected
    ESX            3.0.2     ESX      not affected
    ESX            2.5.5     ESX      not affected
    
    vMA            4.0       RHEL5    Patch 3
    
    • hosted products are VMware Workstation, Player, ACE, Server, Fusion.

    • Solution

    Please review the patch/release notes for your product and version and verify the md5sum of your downloaded file.

    ESX 4.0


    https://hostupdate.vmware.com/software/VUM/OFFLINE/release-192-20100228-732 240/ESX400-201002001.zip md5sum: de62cbccaffa4b2b6831617f18c1ccb4 sha1sum: 4083f191fa4acd6600c9a87e4852f9f5700e91ab http://kb.vmware.com/kb/1018403

    Note: ESX400-201002001 contains the following security bulletins ESX400-201002404-SG, ESX400-201002407-SG, and ESX400-201002406-SG.

    To install an individual bulletin use esxupdate with the -b option. esxupdate --bundle ESX400-201002001.zip -b ESX400-201002404-SG \ -b ESX400-201002407-SG -b ESX400-201002406-SG update

    vMA 4.0


    To update VIMA 1 Log in to VIMA as vi-admin. 2 type 'sudo /usr/sbin/vima-update update' this will apply all currently available updates. See http://tinyurl.com/yfekgrx for more information.

    1. References

    CVE numbers http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2905 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4552 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4316 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1377 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1379

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1386 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1387 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0590 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2904 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3563 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2695 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2849 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2695 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2908 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3228 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3286 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3547 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3613 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3612 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3620 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3621 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3726 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3916 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1189 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0115


    1. Change log

    2010-03-03 VMSA-2010-0004 Initial security advisory after release of bulletins for ESX 4.0 on 2010-03-03 and release of vMA Patch 3 on 2010-02-25.


    1. Contact

    E-mail list for product security notifications and announcements: http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce

    This Security Advisory is posted to the following lists:

    • security-announce at lists.vmware.com
    • bugtraq at securityfocus.com
    • full-disclosure at lists.grok.org.uk

    E-mail: security at vmware.com PGP key at: http://kb.vmware.com/kb/1055

    VMware Security Center http://www.vmware.com/security

    VMware security response policy http://www.vmware.com/support/policies/security_response.html

    General support life cycle policy http://www.vmware.com/support/policies/eos.html

    VMware Infrastructure support life cycle policy http://www.vmware.com/support/policies/eos_vi.html

    Copyright 2010 VMware Inc. All rights reserved.

    -----BEGIN PGP SIGNATURE----- Version: PGP Desktop 9.8.3 (Build 4028) Charset: utf-8

    wj8DBQFLj1c6S2KysvBH1xkRAnl5AJ9RcHVB7qooSwOPFdVoDFTjohDypgCfZ44O 2z0ICIcntM88ZONMfDNUM6Y= =14fN -----END PGP SIGNATURE----- .

    For the oldstable distribution (etch), this problem has been fixed in version 1:4.2.2.p4+dfsg-2etch4.

    For the stable distribution (lenny), this problem has been fixed in version 1:4.2.4p4+dfsg-8lenny3.

    For the testing (squeeze) and unstable (sid) distribution, this problem will be fixed soon.

    We recommend that you upgrade your ntp packages.

    Upgrade instructions


    wget url will fetch the file for you dpkg -i file.deb will install the referenced file.

    If you are using the apt-get package manager, use the line for sources.list as given below:

    apt-get update will update the internal database apt-get upgrade will install corrected packages

    You may use an automated update by adding the resources from the footer to the proper configuration.

    Debian GNU/Linux 4.0 alias etch


    Debian (oldstable)


    Oldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

    Source archives:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.dsc Size/MD5 checksum: 906 115e93f010e32aa1c90231461487503a http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg.orig.tar.gz Size/MD5 checksum: 2199764 ad746cda2d90dbb9ed06fe164273c5d0 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.diff.gz Size/MD5 checksum: 182632 80aa236bd0a39096c5e5d462c0b9b279

    Architecture independent packages:

    http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.2.p4+dfsg-2etch4_all.deb Size/MD5 checksum: 28596 df605f89c08a01116c2ff799777f6a2c http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.2.p4+dfsg-2etch4_all.deb Size/MD5 checksum: 28594 0c683ac7e7f5b131515f956aed87de3d http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.2.p4+dfsg-2etch4_all.deb Size/MD5 checksum: 912886 1af5a623cbf5f145f34dab7beefcd183

    alpha architecture (DEC Alpha)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_alpha.deb Size/MD5 checksum: 408070 ca33235c58a26ad1a839084b4f2d385c http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_alpha.deb Size/MD5 checksum: 65056 e527eb4c93d427c025374805fb5288cb

    amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_amd64.deb Size/MD5 checksum: 62258 13a4f4faaf699913e421c093e598f2a9 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_amd64.deb Size/MD5 checksum: 359384 1a289aa1f8439e2ef736cbf29bbe140f

    arm architecture (ARM)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_arm.deb Size/MD5 checksum: 59784 8a84cae4e8f643cbd3ed684e5a7eb0ff http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_arm.deb Size/MD5 checksum: 344316 57066e8abfdf51c36d63600c993f3c20

    hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_hppa.deb Size/MD5 checksum: 372448 0b8f9b90bb03a2f572066fe8b47c7202 http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_hppa.deb Size/MD5 checksum: 62160 88dc964fa357187ddc97d37513a863ba

    i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_i386.deb Size/MD5 checksum: 58316 90fc92e7a8f6582ee21076849ae0dfba http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_i386.deb Size/MD5 checksum: 333772 e5fbae24686d444fff118f3ce9cc45db

    ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_ia64.deb Size/MD5 checksum: 523358 0032e3c9bcb4a27a312a47fb95d1f9a1 http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_ia64.deb Size/MD5 checksum: 74712 72c1b601f4beb41c6c04a54534ba9c51

    mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mips.deb Size/MD5 checksum: 382868 2980d63a9ca6344e6a76698d0e808f8c http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mips.deb Size/MD5 checksum: 63610 d523930b9b98d6353bf4e6fb7d7e57f5

    mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mipsel.deb Size/MD5 checksum: 64134 e4042de5af081701911a7cece69c6cce http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mipsel.deb Size/MD5 checksum: 390142 b50dc2bd5970f224b6994c460f8f560a

    powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_powerpc.deb Size/MD5 checksum: 358860 432b58ad621ac266455f7e5124d2eb1c http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_powerpc.deb Size/MD5 checksum: 61760 2c9dd1b3a8d61bece4f420e533b7a6eb

    s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_s390.deb Size/MD5 checksum: 350300 40a28748d5016101c179bd4a22c08390 http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_s390.deb Size/MD5 checksum: 61242 14c08344bfd0561ced0d54aa2cd23a2e

    sparc architecture (Sun SPARC/UltraSPARC)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_sparc.deb Size/MD5 checksum: 58584 0e573ef22b1514b12e01fa6ac2bb1ddb http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_sparc.deb Size/MD5 checksum: 332284 4589ff44bc97ad73513d8ba5419c7845

    Debian GNU/Linux 5.0 alias lenny


    Debian (stable)


    Stable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc.

    Source archives:

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.dsc Size/MD5 checksum: 1459 81e70fe84f27e3bfabdbfb9f3122492b http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg.orig.tar.gz Size/MD5 checksum: 2835029 dc2b3ac9cc04b0f29df35467514c9884 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.diff.gz Size/MD5 checksum: 300928 b568f39eda3e46f27239ad44021f968c

    Architecture independent packages:

    http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.4p4+dfsg-8lenny3_all.deb Size/MD5 checksum: 927658 8db03976b7b105057ead2da4bae09219

    alpha architecture (DEC Alpha)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_alpha.deb Size/MD5 checksum: 66706 9213dcba9a99fa363f0ce48c514a008b http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_alpha.deb Size/MD5 checksum: 538492 de37b288ef933f34446ab78a8d8ed76b

    amd64 architecture (AMD x86_64 (AMD64))

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_amd64.deb Size/MD5 checksum: 63836 a0b5b030abe6a6c32591366febcec1d1 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_amd64.deb Size/MD5 checksum: 479472 277efe45a76a24da6ca14ae581d0a3a2

    arm architecture (ARM)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_arm.deb Size/MD5 checksum: 61220 d4905eea52795330e517acca903059f4 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_arm.deb Size/MD5 checksum: 448164 cc28e545eb359eba225abfcb02cc4377

    armel architecture (ARM EABI)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_armel.deb Size/MD5 checksum: 62794 e5a43b8076a77643cc742348f0e63de1 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_armel.deb Size/MD5 checksum: 458908 3721b8d7b7a67b31db6249521dd9f015

    hppa architecture (HP PA RISC)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_hppa.deb Size/MD5 checksum: 63872 53a7009f1888c06b162c258a9bb5d6fb http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_hppa.deb Size/MD5 checksum: 485744 b8e950ba02a13ecacfe332db56c0c887

    i386 architecture (Intel ia32)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_i386.deb Size/MD5 checksum: 434672 6ccfb060f39cc56f39ef8806865b767d http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_i386.deb Size/MD5 checksum: 60114 2f0914ae2191ddf3f74529bc896299da

    ia64 architecture (Intel ia64)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_ia64.deb Size/MD5 checksum: 707812 eb960c732894d56589ba62d76c5ba568 http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_ia64.deb Size/MD5 checksum: 76366 6b5b986e454276661e8b483f095bd16e

    mips architecture (MIPS (Big Endian))

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mips.deb Size/MD5 checksum: 64116 ab287c70d2c2daf7b1a8808db8dcedc9 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mips.deb Size/MD5 checksum: 490394 0009cb5333123767dc3afcde682d9e10

    mipsel architecture (MIPS (Little Endian))

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mipsel.deb Size/MD5 checksum: 500786 3b842b738e616f301c31cd025c595235 http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mipsel.deb Size/MD5 checksum: 64776 fd31cdaa7a78d7e3fa072b746dd98e01

    powerpc architecture (PowerPC)

    http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_powerpc.deb Size/MD5 checksum: 490620 21d03b435c327c2884fe587a56fe10fb http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_powerpc.deb Size/MD5 checksum: 65470 6966f71002ae63c104e608af1a7daa3a

    s390 architecture (IBM S/390)

    http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_s390.deb Size/MD5 checksum: 63678 4b143ad2444681bdb1ee44d395996a29 http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_s390.deb Size/MD5 checksum: 474000 6fb44a33381b0d582599eb33896d8f0f

    These files will probably be moved into the stable distribution on its next update.

    Product/Patch kit ITRC Download Location MD5 and SHA1 Checksum

    HP Tru64 UNIX v 5.1B-4 PK6 (BL27) T64KIT1001787-V51BB27-ES-20100817 http://www.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001787-V51BB27-ES-20100817 MD5 results: 2b3a21a96b7855d9ca223f483bd5bfed SHA1 results: ac2221c9d025008b258ac8592a210e16e775fbcf

    HP Tru64 UNIX v 5.1B-5 PK7 (BL28) T64KIT1001786-V51BB28-ES-20100816 http://www13.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001786-V51BB28-ES-20100816 MD5 results: b34d028797577408d565da27d93c30a9 SHA1 results: b34d028797577408d565da27d93c30a9

    Note: The patch kit installation instructions and the Patch Summary and Release Notes documents provide patch kit installation and removal instructions and a summary of each patch. Please read these documents prior to installing patches. HP TCP/IP Services for OpenVMS v5.4, v5.5, v5.6, and v5.7 (only affected by CVE-2009-3563) on Itanium and Alpha platforms. Patch kit installation instructions are provided in the file readme.txt . ESXi userworld update for ntp

    The Network Time Protocol (NTP) is used to synchronize the time of
    a computer client or server to another server or reference time
    source.
    
    A vulnerability was discovered which may allow remote attackers to
    spoof certificates by using MD2 design flaws to generate a hash
    collision in less than brute-force time. NOTE: the scope of this
    issue is currently limited because the amount of computation
    required is still large.
    
    This update also includes security fixes that were first addressed
    in version openssl-0.9.8e-12.el5.i386.rpm.
    
    Kerberos is a network authentication protocol. It is designed to
    provide strong authentication for client/server applications by
    using secret-key cryptography. This update fixes a flaw found in pam_krb5. In
    some non-default configurations (specifically, where pam_krb5 would
    be the first module to prompt for a password), a remote attacker
    could use this flaw to recognize valid usernames, which would aid a
    dictionary-based password guess attack. Service Console package bind updated to 9.3.6-4.P1.el5_4.2
    
    BIND (Berkeley Internet Name Daemon) is by far the most widely used
    Domain Name System (DNS) software on the Internet.
    
    A vulnerability was discovered which could allow remote attacker to
    add the Authenticated Data (AD) flag to a forged NXDOMAIN response
    for an existing domain.
    
    A vulnerability was found in the way that bind handles out-of-
    bailiwick data accompanying a secure response without re-fetching
    from the original source, which could allow remote attackers to
    have an unspecified impact via a crafted response.
    
    NOTE: ESX does not use the BIND name service daemon by default. Service Console package gcc updated to 3.2.3-60
    
    The GNU Compiler Collection includes front ends for C, C++,
    Objective-C, Fortran, Java, and Ada, as well as libraries for these
    languages
    
    GNU Libtool's ltdl.c attempts to open .la library files in the
    current working directory.  This could allow a local user to gain
    privileges via a Trojan horse file.  The GNU C Compiler collection
    (gcc) provided in ESX contains a statically linked version of the
    vulnerable code, and is being replaced. Service Console package sudo updated to 1.6.9p17-6.el5_4
    
    Sudo (su "do") allows a system administrator to delegate authority
    to give certain users (or groups of users) the ability to run some
    (or all) commands as root or another user while providing an audit
    trail of the commands and their arguments.
    
    When a pseudo-command is enabled, sudo permits a match between the
    name of the pseudo-command and the name of an executable file in an
    arbitrary directory, which allows local users to gain privileges
    via a crafted executable file.
    
    When the runas_default option is used, sudo does not properly set
    group memberships, which allows local users to gain privileges via
    a sudo command.
    

    Corrected: 2010-01-06 21:45:30 UTC (RELENG_8, 8.0-STABLE) 2010-01-06 21:45:30 UTC (RELENG_8_0, 8.0-RELEASE-p2) 2010-01-06 21:45:30 UTC (RELENG_7, 7.2-STABLE) 2010-01-06 21:45:30 UTC (RELENG_7_2, 7.2-RELEASE-p6) 2010-01-06 21:45:30 UTC (RELENG_7_1, 7.1-RELEASE-p10) 2010-01-06 21:45:30 UTC (RELENG_6, 6.4-STABLE) 2010-01-06 21:45:30 UTC (RELENG_6_4, 6.4-RELEASE-p9) 2010-01-06 21:45:30 UTC (RELENG_6_3, 6.3-RELEASE-p15) CVE Name: CVE-2009-3563

    For general information regarding FreeBSD Security Advisories, including descriptions of the fields above, security branches, and the following sections, please visit .

    II.

    III.

    IV. Workaround

    Proper filtering of mode 7 NTP packets by a firewall can limit the number of systems used to attack your resources. Solution

    Perform one of the following:

    1) Upgrade your vulnerable system to 6-STABLE, 7-STABLE or 8-STABLE, or to the RELENG_8_0, RELENG_7_2, RELENG_7_1, RELENG_6_4, or RELENG_6_3 security branch dated after the correction date.

    2) To patch your present system:

    The following patches have been verified to apply to FreeBSD 6.3, 6.4, 7.1, 7.2, and 8.0 systems.

    a) Download the relevant patch from the location below, and verify the detached PGP signature using your PGP utility.

    fetch http://security.FreeBSD.org/patches/SA-10:02/ntpd.patch

    fetch http://security.FreeBSD.org/patches/SA-10:02/ntpd.patch.asc

    b) Execute the following commands as root:

    cd /usr/src

    patch < /path/to/patch

    cd /usr/src/usr.sbin/ntp/ntpd

    make obj && make depend && make && make install

    /etc/rc.d/ntpd restart

    VI. Correction details

    The following list contains the revision numbers of each file that was corrected in FreeBSD.

    CVS:

    Branch Revision Path


    RELENG_6 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.8.2 RELENG_6_4 src/UPDATING 1.416.2.40.2.13 src/sys/conf/newvers.sh 1.69.2.18.2.15 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.8.1.2.1 RELENG_6_3 src/UPDATING 1.416.2.37.2.20 src/sys/conf/newvers.sh 1.69.2.15.2.19 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.20.1 RELENG_7 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.18.2 RELENG_7_2 src/UPDATING 1.507.2.23.2.9 src/sys/conf/newvers.sh 1.72.2.11.2.10 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.18.1.4.1 RELENG_7_1 src/UPDATING 1.507.2.13.2.13 src/sys/conf/newvers.sh 1.72.2.9.2.14 src/contrib/ntp/ntpd/ntp_request.c 1.1.1.4.18.1.2.1 RELENG_8 src/contrib/ntp/ntpd/ntp_request.c 1.2.2.1 RELENG_8_0 src/UPDATING 1.632.2.7.2.5 src/sys/conf/newvers.sh 1.83.2.6.2.5 src/contrib/ntp/ntpd/ntp_request.c 1.2.4.1


    Subversion:

    Branch/path Revision


    stable/6/ r201679 releng/6.4/ r201679 releng/6.3/ r201679 stable/7/ r201679 releng/7.2/ r201679 releng/7.1/ r201679 stable/8/ r201679 releng/8.0/ r201679 head/ r200576


    VII. The upgrade is available by downloading from software.hp.com -> HPUX 11i Software -> Internet ready and networking -> HP-UX Network Time Protocol version 4 or directly from https://h20392.www2.hp.com/portal/swdepot/displayP roductInfo.do?productNumber=HPUX-NTP Please review the Installation link at the bottom of the page. For other issues about the content of this Security Bulletin, send e-mail to security-alert@hp.com.

    Release Date: 2011-03-28 Last Updated: 2011-03-24


    Potential Security Impact: Remote Denial of Service (DoS)

    Source: Hewlett-Packard Company, HP Software Security Response Team

    VULNERABILITY SUMMARY A potential security vulnerability has been identified with HP-UX running XNTP. The vulnerability could be exploited remotely create a Denial of Service (DoS).

    References: CVE-2009-3563

    SUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. HP-UX B.11.11, B.11.23, B.11.31 running XNTP.

    BACKGROUND

    CVSS 2.0 Base Metrics

    Reference Base Vector Base Score CVE-2009-3563 (AV:N/AC:L/Au:N/C:N/I:P/A:P) 6.4 =========================================================== Information on CVSS is documented in HP Customer Notice: HPSN-2008-002

    RESOLUTION

    HP has provided the following patches to resolve this vulnerability. The patches are available by contacting HP Support.

    http://itrc.hp.com

    HP-UX Release / Patch ID

    B.11.11 (11i v1) / PHNE_41907

    B.11.23 (11i v2) / PHNE_41908

    B.11.31 (11i v3) / PHNE_41177

    MANUAL ACTIONS: No

    PRODUCT SPECIFIC INFORMATION

    HP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa

    The following text is for use by the HP-UX Software Assistant.

    AFFECTED VERSIONS

    HP-UX B.11.11

    InternetSrvcs.INETSVCS-BOOT action: install patch PHNE_41907 or subsequent

    HP-UX B.11.23

    InternetSrvcs.INETSVCS2-BOOT action: install patch PHNE_41908 or subsequent

    HP-UX B.11.31

    NTP.NTP-RUN action: install patch PHNE_41177 or subsequent

    END AFFECTED VERSIONS

    HISTORY Version:1 (rev.1) 28 March 2011 Initial release

    Third Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer's patch management policy.

    Support: For further information, contact normal HP Services support channel.

    Report: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com It is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. To get the security-alert PGP key, please send an e-mail message as follows: To: security-alert@hp.com Subject: get key Subscribe: To initiate a subscription to receive future HP Security Bulletins via Email: http://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA&langcode=USENG&jumpid=in_SC-GEN__driverITRC&topiccode=ITRC On the web page: ITRC security bulletins and patch sign-up Under Step1: your ITRC security bulletins and patches -check ALL categories for which alerts are required and continue. Under Step2: your ITRC operating systems -verify your operating system selections are checked and save.

    To update an existing subscription: http://h30046.www3.hp.com/subSignIn.php Log in on the web page: Subscriber's choice for Business: sign-in. On the web page: Subscriber's Choice: your profile summary - use Edit Profile to update appropriate sections.

    To review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do

    • The Software Product Category that this Security Bulletin relates to is represented by the 5th and 6th characters of the Bulletin number in the title:

    GN = HP General SW MA = HP Management Agents MI = Misc. 3rd Party SW MP = HP MPE/iX NS = HP NonStop Servers OV = HP OpenVMS PI = HP Printing & Imaging ST = HP Storage SW TL = HP Trusted Linux TU = HP Tru64 UNIX UX = HP-UX VV = HP VirtualVault

    System management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions.

    "HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user's use or disregard of the information provided in this Bulletin. To the extent permitted by law, HP disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose, title and non-infringement."

    Copyright 2009 Hewlett-Packard Development Company, L.P. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided "as is" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners

    Show details on source website

    {
      "affected_products": {
        "_id": null,
        "data": [
          {
            "_id": null,
            "model": "unified communications manager 5.1",
            "scope": null,
            "trust": 2.1,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ntp",
            "version": "4.1.2"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.2.2p2"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.91"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.2.2p3"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.93"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.2.2p1"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.73"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.92"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.90"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "ntp",
            "version": "4.0.94"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.96"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.98"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.97"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.2.5"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.1.0"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.2.0"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "lte",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.2.2p4"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.99"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.72"
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "ntp",
            "version": "4.0.95"
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "apple",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "debian gnu linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "gentoo linux",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "meinberg funkuhren",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "red hat",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "the sco group",
            "version": null
          },
          {
            "_id": null,
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "ubuntu",
            "version": null
          },
          {
            "_id": null,
            "model": "sparc",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30aa\u30e9\u30af\u30eb",
            "version": null
          },
          {
            "_id": null,
            "model": "sun solaris",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b5\u30f3 \u30de\u30a4\u30af\u30ed\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": null,
            "trust": 0.8,
            "vendor": "ibm",
            "version": null
          },
          {
            "_id": null,
            "model": "asianux server",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b5\u30a4\u30d0\u30fc\u30c8\u30e9\u30b9\u30c8\u682a\u5f0f\u4f1a\u793e",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "securebranch",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u672c\u96fb\u6c17",
            "version": null
          },
          {
            "_id": null,
            "model": "ntp",
            "scope": null,
            "trust": 0.8,
            "vendor": "ntp",
            "version": null
          },
          {
            "_id": null,
            "model": "hp tru64 unix",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30d2\u30e5\u30fc\u30ec\u30c3\u30c8 \u30d1\u30c3\u30ab\u30fc\u30c9",
            "version": null
          },
          {
            "_id": null,
            "model": "netshelter\u30b7\u30ea\u30fc\u30ba",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u5bcc\u58eb\u901a",
            "version": null
          },
          {
            "_id": null,
            "model": "ip8800/s,/r",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u65e5\u672c\u96fb\u6c17",
            "version": null
          },
          {
            "_id": null,
            "model": "ipcom\u30b7\u30ea\u30fc\u30ba",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u5bcc\u58eb\u901a",
            "version": null
          },
          {
            "_id": null,
            "model": "netra sparc",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30aa\u30e9\u30af\u30eb",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux desktop",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "hp-ux",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30d2\u30e5\u30fc\u30ec\u30c3\u30c8 \u30d1\u30c3\u30ab\u30fc\u30c9",
            "version": null
          },
          {
            "_id": null,
            "model": "red hat enterprise linux eus",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30ec\u30c3\u30c9\u30cf\u30c3\u30c8",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris",
            "scope": null,
            "trust": 0.8,
            "vendor": "\u30b5\u30f3 \u30de\u30a4\u30af\u30ed\u30b7\u30b9\u30c6\u30e0\u30ba",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager su1",
            "scope": "eq",
            "trust": 0.6,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.3 sr1a",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 131",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified meetingplace express",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 95",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux hppa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "-release-p2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 54",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 93",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "networks enterprise voip tm-cs1000",
            "scope": null,
            "trust": 0.3,
            "vendor": "nortel",
            "version": null
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1.1"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.3"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0.3"
          },
          {
            "_id": null,
            "model": "ace appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 121",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.5"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.7"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0.5"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 99",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "cms server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "15.0"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.3.2"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.1 sr5",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0.2"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.7"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.6.1"
          },
          {
            "_id": null,
            "model": "solaris 8 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.3"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "unified callmanager 3.3 sr2a",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 100",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 124",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 123",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "big-ip build",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2413.1"
          },
          {
            "_id": null,
            "model": "linux alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 49",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mipsel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "-release-p5",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.17"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 114",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 128",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 85",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 19",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "70000"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 107",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "wireless location appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 45",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "-prerelease",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "unified communications",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5000"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "meeting exchange sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "cms server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "14.1"
          },
          {
            "_id": null,
            "model": "vma",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 78",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 108",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.4.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 28",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.8"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2"
          },
          {
            "_id": null,
            "model": "unified callmanager sr5c",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.3"
          },
          {
            "_id": null,
            "model": "unified callmanager 3.3 sr2b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 89",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "6.3-release-p10",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.6"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 39",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "message networking mn",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "-release-p8",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ntp",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "linux lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.04"
          },
          {
            "_id": null,
            "model": "cms server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "14.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 90",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 68",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 7.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.3"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "6.3-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 67",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 120",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 51",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.2-rc2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.6"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1(3)"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0(1)"
          },
          {
            "_id": null,
            "model": "7.0-release-p12",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "unified callmanager 4.1 sr8a",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.1"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.3 sr1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "aura system platform sp1.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.0"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.2.1"
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 77",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 61",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "7.1-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 82",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.0-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 29",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "meeting exchange sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux armel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 41",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.5"
          },
          {
            "_id": null,
            "model": "ace xml gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "multi network firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 126",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.2-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "esxi server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "3.5"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "5.0.1"
          },
          {
            "_id": null,
            "model": "7.1-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "7.0-release-p8",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "voice portal sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "1"
          },
          {
            "_id": null,
            "model": "corporate server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 35",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.0(2)"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "12.2"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0(4)"
          },
          {
            "_id": null,
            "model": "ctpos 6.6r2",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "intuity audix lx sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop version",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "mds",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "95000"
          },
          {
            "_id": null,
            "model": "unified callmanager 3.3 sr3",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms i64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.5"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 130",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.1-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux desktop client",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 105",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 6.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "-pre-release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.19"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "unified callmanager 4.1 sr4",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1(2)"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 88",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.0"
          },
          {
            "_id": null,
            "model": "8.0-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 7.1 su1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "sparc t3-1b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0(3)"
          },
          {
            "_id": null,
            "model": "cms server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "16.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 111",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux lts i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 118",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 59",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.2-prerelease",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "8.1"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.18"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "12.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 112",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "corporate server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "sparc t3-2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "corporate server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "7.2-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "solaris 8 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(3)"
          },
          {
            "_id": null,
            "model": "p8",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ntp",
            "version": "4.2.4"
          },
          {
            "_id": null,
            "model": "solaris 10 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 96",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.7"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "-release-p9",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "appliance platform linux service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "1"
          },
          {
            "_id": null,
            "model": "netra sparc t3-1b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(4)"
          },
          {
            "_id": null,
            "model": "linux alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "-release-p3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 132",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 36",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 48",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2.1"
          },
          {
            "_id": null,
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "9"
          },
          {
            "_id": null,
            "model": "-release-p1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms i64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.4"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1.3"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 94",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 4.3 sr1b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "esx server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.1 sr7",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "-release-p6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 50",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rtos update patch a",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.2 sr4b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "8.0-stable",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1"
          },
          {
            "_id": null,
            "model": "7.1-release-p6",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0.1"
          },
          {
            "_id": null,
            "model": "-release-p9",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "corporate server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "wide area application services 4.1.1b",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager sr4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "enterprise server x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "aura communication manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1.6"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1.4"
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.1"
          },
          {
            "_id": null,
            "model": "p4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ntp",
            "version": "4.2.4"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.04"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.9"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 01",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 92",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux x86 64 -current",
            "scope": null,
            "trust": 0.3,
            "vendor": "slackware",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "2"
          },
          {
            "_id": null,
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.1.1"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "4.25"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 83",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 106",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "-stable",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "6.4-release-p2",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 125",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "7.0-release-p3",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "-stable",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "telepresence readiness assessment manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "netbsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "5"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.9"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0.2"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.3.1"
          },
          {
            "_id": null,
            "model": "idp 5.1r4",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "messaging storage server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "pardus",
            "version": "20080"
          },
          {
            "_id": null,
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "meeting exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "6.4-release-p4",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 76",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.1(2)"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3"
          },
          {
            "_id": null,
            "model": "proactive contact",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "7.0-release",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 101a",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.10"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 111a",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 87",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2010.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 113",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2009.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 57",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "-releng",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "unified communication manager business edition",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0.4"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.0.x"
          },
          {
            "_id": null,
            "model": "meetingplace",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "appliance platform linux service",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "rpath",
            "version": "2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 119",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.13"
          },
          {
            "_id": null,
            "model": "linux lts sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.1"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 110",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "unified communications manager 4.2 sr2",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 71",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.1"
          },
          {
            "_id": null,
            "model": "linux lts lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.8"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.04"
          },
          {
            "_id": null,
            "model": "sparc t3-4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.4.1"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.3(2)"
          },
          {
            "_id": null,
            "model": "unified communications manager 4.3 sr1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "telepresence recording server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "unified callmanager 5.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "unified callmanager 5.0 su1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "unified callmanager 4.1 sr8",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.3"
          },
          {
            "_id": null,
            "model": "linux m68k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 122",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms i64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.6"
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.6"
          },
          {
            "_id": null,
            "model": "hp-ux b.11.31",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 109",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2.5"
          },
          {
            "_id": null,
            "model": "linux hppa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "digital media player",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 102",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.04"
          },
          {
            "_id": null,
            "model": "solaris 9 sparc",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 02",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified callmanager sr5b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "6.0-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mipsel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.10"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2.2"
          },
          {
            "_id": null,
            "model": "4.2.0.a",
            "scope": null,
            "trust": 0.3,
            "vendor": "ntp",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 80",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 104",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "ip interoperability \u0026 communications system ipics",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.10"
          },
          {
            "_id": null,
            "model": "netra sparc t3-1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 56",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 38",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "unified communications manager sr2b",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "12.0"
          },
          {
            "_id": null,
            "model": "sparc t3-1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 129",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "rtos sp3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "6.3.0"
          },
          {
            "_id": null,
            "model": "aura application enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "5.2"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "10.0"
          },
          {
            "_id": null,
            "model": "-release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0(2)"
          },
          {
            "_id": null,
            "model": "intuity audix lx r1.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "6.06"
          },
          {
            "_id": null,
            "model": "beta4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "7.0"
          },
          {
            "_id": null,
            "model": "rtos",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "qnx",
            "version": "2.4"
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "7.1"
          },
          {
            "_id": null,
            "model": "-release",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.4"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "3.3"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "6.1.2"
          },
          {
            "_id": null,
            "model": "linux lts amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.10"
          },
          {
            "_id": null,
            "model": "intuity audix lx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "1.0"
          },
          {
            "_id": null,
            "model": "linux lts powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.04"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2.3.30"
          },
          {
            "_id": null,
            "model": "tcp/ip services for openvms i64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.7"
          },
          {
            "_id": null,
            "model": "7.2-release-p1",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "big-ip application security manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.4.4"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 84",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "11.0"
          },
          {
            "_id": null,
            "model": "intuity audix lx sp1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "linux enterprise server sp2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "10"
          },
          {
            "_id": null,
            "model": "messaging storage server mm3.0",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "ace application control engine",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "47000"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 98",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 117",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 133",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 58",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux -current",
            "scope": null,
            "trust": 0.3,
            "vendor": "slackware",
            "version": null
          },
          {
            "_id": null,
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "aura sip enablement services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.2.3"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "nexus",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "50000"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 22",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.10"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 81",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "slackware",
            "version": "13.0"
          },
          {
            "_id": null,
            "model": "message networking",
            "scope": null,
            "trust": 0.3,
            "vendor": "avaya",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 103",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "esxi server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "vmware",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "ctpos 6.6r1",
            "scope": null,
            "trust": 0.3,
            "vendor": "juniper",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.1(1)"
          },
          {
            "_id": null,
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "_id": null,
            "model": "7.0-release-p11",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "beta2",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "netbsd",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 13",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 4.3 sr.1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(1)"
          },
          {
            "_id": null,
            "model": "unified callmanager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "5.0(1)"
          },
          {
            "_id": null,
            "model": "enterprise linux server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "5"
          },
          {
            "_id": null,
            "model": "p4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ntp",
            "version": "4.2.2"
          },
          {
            "_id": null,
            "model": "big-ip",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "f5",
            "version": "9.0"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 91",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager 7.0 su1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "6.1(2)"
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "4.1"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 47",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 64",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "aix",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ibm",
            "version": "5.3.10"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 37",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 101",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "unified communications manager sr3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.2"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 115",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "voice portal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "linux armel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "4.0"
          },
          {
            "_id": null,
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "_id": null,
            "model": "solaris 10 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "_id": null,
            "model": "linux lpia",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "8.10"
          },
          {
            "_id": null,
            "model": "freebsd",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "freebsd",
            "version": "6.3"
          },
          {
            "_id": null,
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "9.04"
          },
          {
            "_id": null,
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2008.0"
          },
          {
            "_id": null,
            "model": "intuity audix lx",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "avaya",
            "version": "2.0"
          },
          {
            "_id": null,
            "model": "solaris 9 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "unified meetingplace",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "0"
          },
          {
            "_id": null,
            "model": "wide area application services",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "cisco",
            "version": "4.0.7"
          },
          {
            "_id": null,
            "model": "opensolaris build snv 116",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "opensolaris build snv 127",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "_id": null,
            "model": "idp",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "juniper",
            "version": "5.1"
          },
          {
            "_id": null,
            "model": "6.4-releng",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          },
          {
            "_id": null,
            "model": "linux m68k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "unified callmanager 4.2 sr1",
            "scope": null,
            "trust": 0.3,
            "vendor": "cisco",
            "version": null
          },
          {
            "_id": null,
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "5.0"
          },
          {
            "_id": null,
            "model": "6.4-release-p5",
            "scope": null,
            "trust": 0.3,
            "vendor": "freebsd",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#568372"
          },
          {
            "db": "BID",
            "id": "37255"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          }
        ]
      },
      "credits": {
        "_id": null,
        "data": "Statement Date:\u00a0\u00a0 January 17, 2024",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#417980"
          }
        ],
        "trust": 0.8
      },
      "cve": "CVE-2009-3563",
      "cvss": {
        "_id": null,
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 6.4,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2009-3563",
                "impactScore": 4.9,
                "integrityImpact": "PARTIAL",
                "severity": "MEDIUM",
                "trust": 1.9,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2009-3563",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "NVD",
                "id": "CVE-2009-3563",
                "trust": 0.8,
                "value": "Medium"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200912-113",
                "trust": 0.6,
                "value": "MEDIUM"
              },
              {
                "author": "VULMON",
                "id": "CVE-2009-3563",
                "trust": 0.1,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2009-3563"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          }
        ]
      },
      "description": {
        "_id": null,
        "data": "ntp_request.c in ntpd in NTP before 4.2.4p8, and 4.2.5, allows remote attackers to cause a denial of service (CPU and bandwidth consumption) by using MODE_PRIVATE to send a spoofed (1) request or (2) response packet that triggers a continuous exchange of MODE_PRIVATE error responses between two NTP daemons. A novel traffic-loop vulnerability has been identified against certain implementations of UDP-based applications protocols.  An unauthenticated attacker can use maliciously-crafted packets against a UDP-based vulnerable implementation of application protocols (e.g., DNS, NTP, TFTP) that can lead to Denial-of-Service (DOS) and/or abuse of resources.CVE-2009-3563 Unknown\nCVE-2024-1309 Unknown\nCVE-2024-2169 AffectedCVE-2009-3563 Unknown\nCVE-2024-1309 Unknown\nCVE-2024-2169 Affected. NTP for, mode 7 A vulnerability exists due to packet processing. NTP Then \"restrict ... noquery\" or \"restrict ... ignore\" There are no restrictions due to the settings of IP From the address, an invalid mode 7 request or mode 7 If you receive an error response, mode 7 Returns and logs the error message. NTP The sender address was spoofed. mode 7 A vulnerability exists due to packet processing.Service operation obstruction by a remote third party (DoS) You may be attacked. NTP is prone to a remote denial-of-service vulnerability because it fails to properly handle certain incoming network packets. \nAn attacker can exploit this issue to cause the application to consume excessive CPU resources and fill disk space with log messages. \n _______________________________________________________________________\n\n References:\n\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3563\n _______________________________________________________________________\n\n Updated Packages:\n\n Mandriva Linux 2008.0:\n 7377623e9f89c5f6f6cc7af577974458  2008.0/i586/ntp-4.2.4-10.3mdv2008.0.i586.rpm\n 977fdaf289c9eff53fb6d563b8a60ede  2008.0/i586/ntp-client-4.2.4-10.3mdv2008.0.i586.rpm\n e2701dc192a578b141f9408d355522b6  2008.0/i586/ntp-doc-4.2.4-10.3mdv2008.0.i586.rpm \n 167e3a9dbf1bd10fd576e6a91a2cbc10  2008.0/SRPMS/ntp-4.2.4-10.3mdv2008.0.src.rpm\n\n Mandriva Linux 2008.0/X86_64:\n 4fa28ef04548ded3dc604ea61a671cc5  2008.0/x86_64/ntp-4.2.4-10.3mdv2008.0.x86_64.rpm\n b79353be7c2da1fadf3bc55c2c06a6a6  2008.0/x86_64/ntp-client-4.2.4-10.3mdv2008.0.x86_64.rpm\n c93dd45fc32ece044874c09aac85ce66  2008.0/x86_64/ntp-doc-4.2.4-10.3mdv2008.0.x86_64.rpm \n 167e3a9dbf1bd10fd576e6a91a2cbc10  2008.0/SRPMS/ntp-4.2.4-10.3mdv2008.0.src.rpm\n\n Mandriva Linux 2009.0:\n 6a38837b845970b62520f48273362485  2009.0/i586/ntp-4.2.4-18.5mdv2009.0.i586.rpm\n 4f9d98a186c4ca4348f8296fde0bf174  2009.0/i586/ntp-client-4.2.4-18.5mdv2009.0.i586.rpm\n 0ae26de5f1bddba4c2718a55463d94b7  2009.0/i586/ntp-doc-4.2.4-18.5mdv2009.0.i586.rpm \n 45b55bdbde84289b20e295b9dbf188fb  2009.0/SRPMS/ntp-4.2.4-18.5mdv2009.0.src.rpm\n\n Mandriva Linux 2009.0/X86_64:\n e31f3f71e730e5777d9832cd76430b17  2009.0/x86_64/ntp-4.2.4-18.5mdv2009.0.x86_64.rpm\n 67a998da616d287fe9e15092bbd45ff6  2009.0/x86_64/ntp-client-4.2.4-18.5mdv2009.0.x86_64.rpm\n ab02dd7a3457f0ba75248390827c69a4  2009.0/x86_64/ntp-doc-4.2.4-18.5mdv2009.0.x86_64.rpm \n 45b55bdbde84289b20e295b9dbf188fb  2009.0/SRPMS/ntp-4.2.4-18.5mdv2009.0.src.rpm\n\n Mandriva Linux 2009.1:\n b6597f0ee96ec99c7ddbe5e18a588e48  2009.1/i586/ntp-4.2.4-22.3mdv2009.1.i586.rpm\n 069667f851886c39daa0309a5e920619  2009.1/i586/ntp-client-4.2.4-22.3mdv2009.1.i586.rpm\n 9d5b87f008f00ad30b3c652e5f62eea2  2009.1/i586/ntp-doc-4.2.4-22.3mdv2009.1.i586.rpm \n e2686dd1237f529bb08f2837052fb46f  2009.1/SRPMS/ntp-4.2.4-22.3mdv2009.1.src.rpm\n\n Mandriva Linux 2009.1/X86_64:\n e88121b38c942c572b61ba7631130104  2009.1/x86_64/ntp-4.2.4-22.3mdv2009.1.x86_64.rpm\n c10eaf7ecbeb3b5db5eac978cb2ae78e  2009.1/x86_64/ntp-client-4.2.4-22.3mdv2009.1.x86_64.rpm\n 8ff34e79ed1f88fa2e7b7e8030232a30  2009.1/x86_64/ntp-doc-4.2.4-22.3mdv2009.1.x86_64.rpm \n e2686dd1237f529bb08f2837052fb46f  2009.1/SRPMS/ntp-4.2.4-22.3mdv2009.1.src.rpm\n\n Mandriva Linux 2010.0:\n 2913258a9be65654a3ce5e16c1bd5b25  2010.0/i586/ntp-4.2.4-27.1mdv2010.0.i586.rpm\n 90cf8d7f8fb468461f8b8baf7d97daa4  2010.0/i586/ntp-client-4.2.4-27.1mdv2010.0.i586.rpm\n 0b8527559ef05049461cea2f5a83bd6d  2010.0/i586/ntp-doc-4.2.4-27.1mdv2010.0.i586.rpm \n 7bbd4271086ace434dd8a958bc7c2488  2010.0/SRPMS/ntp-4.2.4-27.1mdv2010.0.src.rpm\n\n Mandriva Linux 2010.0/X86_64:\n 2e938e58d48f3f581ffaab085dacc1f2  2010.0/x86_64/ntp-4.2.4-27.1mdv2010.0.x86_64.rpm\n cde3421867c549169751f2964420a578  2010.0/x86_64/ntp-client-4.2.4-27.1mdv2010.0.x86_64.rpm\n d9799e7286a49420699d3995e8bc1e47  2010.0/x86_64/ntp-doc-4.2.4-27.1mdv2010.0.x86_64.rpm \n 7bbd4271086ace434dd8a958bc7c2488  2010.0/SRPMS/ntp-4.2.4-27.1mdv2010.0.src.rpm\n\n Corporate 3.0:\n 65dda36544e7a43175abfd64aa725b34  corporate/3.0/i586/ntp-4.2.0-2.4.C30mdk.i586.rpm \n a485cad0631598335af0e89ea399ff9d  corporate/3.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm\n\n Corporate 3.0/X86_64:\n 44130a38552f20b3f34d176c47aa5aab  corporate/3.0/x86_64/ntp-4.2.0-2.4.C30mdk.x86_64.rpm \n a485cad0631598335af0e89ea399ff9d  corporate/3.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm\n\n Corporate 4.0:\n a2f5a598865d390f7c537fc9e1a9a758  corporate/4.0/i586/ntp-4.2.0-21.7.20060mlcs4.i586.rpm\n f7eb3884bc0aa71f8237d9500d24489e  corporate/4.0/i586/ntp-client-4.2.0-21.7.20060mlcs4.i586.rpm \n d2ed46d981570f66763f85c822b14179  corporate/4.0/SRPMS/ntp-4.2.0-21.7.20060mlcs4.src.rpm\n\n Corporate 4.0/X86_64:\n 1bd4395c9c80b583bad4ce5085c0d557  corporate/4.0/x86_64/ntp-4.2.0-21.7.20060mlcs4.x86_64.rpm\n 95f812f672cf79fccee411154c23d6ee  corporate/4.0/x86_64/ntp-client-4.2.0-21.7.20060mlcs4.x86_64.rpm \n d2ed46d981570f66763f85c822b14179  corporate/4.0/SRPMS/ntp-4.2.0-21.7.20060mlcs4.src.rpm\n\n Mandriva Enterprise Server 5:\n 16e3975f3e4bb9a830eb1e8166f2fec7  mes5/i586/ntp-4.2.4-18.5mdvmes5.i586.rpm\n 2af9623d6f3685d54dd4db31f9622f7a  mes5/i586/ntp-client-4.2.4-18.5mdvmes5.i586.rpm\n 5abb771d456b4094d123c5cf24701aee  mes5/i586/ntp-doc-4.2.4-18.5mdvmes5.i586.rpm \n 086a05988392a6602c023f4e453bcc32  mes5/SRPMS/ntp-4.2.4-18.5mdvmes5.src.rpm\n\n Mandriva Enterprise Server 5/X86_64:\n 9b40b186bf9ebeb70c1350f9a158ac92  mes5/x86_64/ntp-4.2.4-18.5mdvmes5.x86_64.rpm\n f4a42229dc9b408b04f0c83aa3a25720  mes5/x86_64/ntp-client-4.2.4-18.5mdvmes5.x86_64.rpm\n 2022447e5d9dbf6ee1a6e594935b1d04  mes5/x86_64/ntp-doc-4.2.4-18.5mdvmes5.x86_64.rpm \n 086a05988392a6602c023f4e453bcc32  mes5/SRPMS/ntp-4.2.4-18.5mdvmes5.src.rpm\n\n Multi Network Firewall 2.0:\n 56a2596fd513295f0700508c08a6a3da  mnf/2.0/i586/ntp-4.2.0-2.4.C30mdk.i586.rpm \n f8218643f02c3168e0331852630835a0  mnf/2.0/SRPMS/ntp-4.2.0-2.4.C30mdk.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you. \n\n All packages are signed by Mandriva for security.  You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n  http://www.mandriva.com/security/advisories\n\n If you want to report vulnerabilities, please contact\n\n  security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID     Date       User ID\n pub  1024D/22458A98 2000-07-10 Mandriva Security Team\n  \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.4.9 (GNU/Linux)\n\niD8DBQFLHtsAmqjQ0CJFipgRAi1pAKDUH87qI312n3XHGnl4TgVNC+IuvACbBhUw\nnLO5FqSyfvZaqSNZ93vTSUw=\n=XCg1\n-----END PGP SIGNATURE-----\n. -----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n- ------------------------------------------------------------------------\n                   VMware Security Advisory\n\nAdvisory ID:       VMSA-2010-0004\nSynopsis:          ESX Service Console and vMA third party updates\nIssue date:        2010-03-03\nUpdated on:        2010-03-03 (initial release of advisory)\nCVE numbers:       CVE-2009-2905 CVE-2008-4552 CVE-2008-4316\n                   CVE-2009-1377 CVE-2009-1378 CVE-2009-1379\n                   CVE-2009-1386 CVE-2009-1387 CVE-2009-0590\n                   CVE-2009-4022 CVE-2009-3560 CVE-2009-3720\n                   CVE-2009-2904 CVE-2009-3563 CVE-2009-2695\n                   CVE-2009-2849 CVE-2009-2695 CVE-2009-2908\n                   CVE-2009-3228 CVE-2009-3286 CVE-2009-3547\n                   CVE-2009-3613 CVE-2009-3612 CVE-2009-3620\n                   CVE-2009-3621 CVE-2009-3726 CVE-2008-3916\n                   CVE-2009-1189 CVE-2009-0115\n\n- ------------------------------------------------------------------------\n\n1. Summary\n\n   ESX Service Console updates for newt, nfs-utils, and glib2 packages. \n\n   vMA updates for newt, nfs-util, glib2, kpartx, libvolume-id,\n   device-mapper-multipath, fipscheck, dbus, dbus-libs, ed, openssl,\n   bind, expat, openssh, ntp and kernel packages. \n\n2. Relevant releases\n\n   VMware ESX 4.0.0 without patch ESX400-201002404-SG, ESX400-201002407-SG,\n                                  ESX400-201002406-SG\n\n   VMware vMA 4.0 before patch 3\n\n3. Problem Description\n\n a. vMA and Service Console update for newt to 0.52.2-12.el5_4.1\n\n    Newt is a programming library for color text mode, widget based\n    user interfaces. Newt can be used to add stacked windows, entry\n    widgets, checkboxes, radio buttons, labels, plain text fields,\n    scrollbars, etc., to text mode user interfaces. \n\n    A heap-based buffer overflow flaw was found in the way newt\n    processes content that is to be displayed in a text dialog box. \n    A local attacker could issue a specially-crafted text dialog box\n    display request (direct or via a custom application), leading to a\n    denial of service (application crash) or, potentially, arbitrary\n    code execution with the privileges of the user running the\n    application using the newt library. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2009-2905 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      ESX400-201002406-SG\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n b. vMA and Service Console update for vMA package nfs-utils to\n    1.0.9-42.el5\n\n    The nfs-utils package provides a daemon for the kernel NFS server\n    and related tools. \n\n    It was discovered that nfs-utils did not use tcp_wrappers\n    correctly.  Certain hosts access rules defined in \"/etc/hosts.allow\"\n    and \"/etc/hosts.deny\" may not have been honored, possibly allowing\n    remote attackers to bypass intended access restrictions. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2008-4552 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      ESX400-201002407-SG\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n c. vMA and Service Console package glib2 updated to 2.12.3-4.el5_3.1\n\n    GLib is the low-level core library that forms the basis for projects\nsuch\n    as GTK+ and GNOME. It provides data structure handling for C,\n    portability wrappers, and interfaces for such runtime functionality\n    as an event loop, threads, dynamic loading, and an object system. \n\n    Multiple integer overflows in glib/gbase64.c in GLib before 2.20\n    allow context-dependent attackers to execute arbitrary code via a\n    long string that is converted either from or to a base64\n    representation. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2008-4316 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      ESX400-201002404-SG\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n d. vMA and Service Console update for openssl to 0.9.8e-12.el5\n\n    SSL is a toolkit implementing SSL v2/v3 and TLS protocols with full-\n    strength cryptography world-wide. \n\n    Multiple denial of service flaws were discovered in OpenSSL\u0027s DTLS\n    implementation. A remote attacker could use these flaws to cause a\n    DTLS server to use excessive amounts of memory, or crash on an\n    invalid memory access or NULL pointer dereference. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the names CVE-2009-1377, CVE-2009-1378,\n    CVE-2009-1379, CVE-2009-1386, CVE-2009-1387 to these issues. \n\n    An input validation flaw was found in the handling of the BMPString\n    and UniversalString ASN1 string types in OpenSSL\u0027s\n    ASN1_STRING_print_ex() function. An attacker could use this flaw to\n    create a specially-crafted X.509 certificate that could cause\n    applications using the affected function to crash when printing\n    certificate contents. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2009-0590 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n e. vMA and Service Console package bind updated to 9.3.6-4.P1.el5_4.1\n\n    It was discovered that BIND was incorrectly caching responses\n    without performing proper DNSSEC validation, when those responses\n    were received during the resolution of a recursive client query\n    that requested DNSSEC records but indicated that checking should be\n    disabled. A remote attacker could use this flaw to bypass the DNSSEC\n    validation check and perform a cache poisoning attack if the target\n    BIND server was receiving such client queries. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2009-4022 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not applicable\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n f. vMA and Service Console package expat updated to 1.95.8-8.3.el5_4.2. \n\n    Two buffer over-read flaws were found in the way Expat handled\n    malformed UTF-8 sequences when processing XML files. A specially-\n    crafted XML file could cause applications using Expat to fail while\n    parsing the file. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the names CVE-2009-3560 and CVE-2009-3720 to these\n    issues. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not applicable\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      affected, patch pending\n    ESX            3.0.3     ESX      affected, patch pending\n    ESX            2.5.5     ESX      affected, patch pending\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n g. vMA and Service Console package openssh update to 4.3p2-36.el5_4.2\n \n    A Red Hat specific patch used in the openssh packages as shipped in\n    Red Hat Enterprise Linux 5.4 (RHSA-2009:1287) loosened certain\n    ownership requirements for directories used as arguments for the\n    ChrootDirectory configuration options. A malicious user that also\n    has or previously had non-chroot shell access to a system could\n    possibly use this flaw to escalate their privileges and run\n    commands as any system user. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2009-2904 to this issue. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not applicable\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n h. vMA and Service Console package ntp updated to\n    ntp-4.2.2p1-9.el5_4.1.i386.rpm\n\n    A flaw was discovered in the way ntpd handled certain malformed NTP\n    packets. ntpd logged information about all such packets and replied\n    with an NTP packet that was treated as malformed when received by\n    another ntpd. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the name CVE-2009-3563 to this issue.   \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not applicable\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      affected, patch pending\n    ESX            3.0.3     ESX      affected, patch pending\n    ESX            2.5.5     ESX      affected, patch pending\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n i. vMA update for package kernel to 2.6.18-164.9.1.el5\n\n    Updated vMA package kernel addresses the security issues listed\n    below. \n \n    The Common Vulnerabilities and Exposures project (cve.mitre.org)\n    has assigned the name CVE-2009-2849 to the security issue fixed in\n    kernel 2.6.18-128.2.1\n\n    The Common Vulnerabilities and Exposures project (cve.mitre.org)\n    has assigned the names CVE-2009-2695, CVE-2009-2908, CVE-2009-3228,\n    CVE-2009-3286, CVE-2009-3547, CVE-2009-3613 to the security issues\n    fixed in kernel 2.6.18-128.6.1\n\n    The Common Vulnerabilities and Exposures project (cve.mitre.org)\n    has assigned the names CVE-2009-3612, CVE-2009-3620, CVE-2009-3621,\n    CVE-2009-3726 to the security issues fixed in kernel\n    2.6.18-128.9.1\n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      affected, patch pending\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3 **\n\n  * hosted products are VMware Workstation, Player, ACE, Fusion. \n\n  ** vMA is updated to kernel version 2.6.18-164.9.1\n\n j. vMA 4.0 updates for the packages kpartx, libvolume-id,\n    device-mapper-multipath, fipscheck, dbus, dbus-libs, and ed\n\n    kpartx updated to 0.4.7-23.el5_3.4, libvolume-id updated to\n    095-14.20.el5 device-mapper-multipath package updated to\n    0.4.7-23.el5_3.4, fipscheck updated to 1.0.3-1.el5, dbus\n    updated to 1.1.2-12.el5, dbus-libs updated to 1.1.2-12.el5,\n    and ed package updated to 0.2-39.el5_2. \n\n    The Common Vulnerabilities and Exposures Project (cve.mitre.org)\n    has assigned the names CVE-2008-3916, CVE-2009-1189 and\n    CVE-2009-0115 to these issues. \n\n    The following table lists what action remediates the vulnerability\n    (column 4) if a solution is available. \n\n    VMware         Product   Running  Replace with/\n    Product        Version   on       Apply Patch\n    =============  ========  =======  =================\n    VirtualCenter  any       Windows  not affected\n\n    hosted *       any       any      not affected\n\n    ESXi           any       ESXi     not affected\n\n    ESX            4.0       ESX      not affected\n    ESX            3.5       ESX      not affected\n    ESX            3.0.3     ESX      not affected\n    ESX            3.0.2     ESX      not affected\n    ESX            2.5.5     ESX      not affected\n\n    vMA            4.0       RHEL5    Patch 3\n\n  * hosted products are VMware Workstation, Player, ACE, Server, Fusion. \n\n4. Solution\n\n   Please review the patch/release notes for your product and version\n   and verify the md5sum of your downloaded file. \n\n   ESX 4.0\n   -------\n \nhttps://hostupdate.vmware.com/software/VUM/OFFLINE/release-192-20100228-732\n240/ESX400-201002001.zip\n   md5sum: de62cbccaffa4b2b6831617f18c1ccb4\n   sha1sum: 4083f191fa4acd6600c9a87e4852f9f5700e91ab\n   http://kb.vmware.com/kb/1018403\n\n   Note: ESX400-201002001 contains the following security bulletins\n   ESX400-201002404-SG, ESX400-201002407-SG, and ESX400-201002406-SG. \n\n   To install an individual bulletin use esxupdate with the -b option. \n   esxupdate --bundle ESX400-201002001.zip -b ESX400-201002404-SG \\\n   -b ESX400-201002407-SG -b ESX400-201002406-SG update\n\n   vMA 4.0\n   -------\n   To update VIMA\n       1 Log in to VIMA as vi-admin. \n       2 type \u0027sudo /usr/sbin/vima-update update\u0027 this will apply all\n         currently available updates.  See http://tinyurl.com/yfekgrx\n         for more information. \n\n5. References\n\n   CVE numbers\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2905\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4552\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4316\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1377\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1378\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1379            \n     \n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1386\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1387\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0590\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-4022\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3560\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3720\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2904\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3563\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2695\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2849\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2695\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2908\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3228\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3286\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3547\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3613\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3612\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3620\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3621\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3726\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3916\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1189\n   http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0115\n\n- ------------------------------------------------------------------------\n6. Change log\n\n2010-03-03  VMSA-2010-0004\nInitial security advisory after release of bulletins for ESX 4.0\non 2010-03-03 and release of vMA Patch 3 on 2010-02-25. \n\n- -----------------------------------------------------------------------\n7. Contact\n\nE-mail list for product security notifications and announcements:\nhttp://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce\n\nThis Security Advisory is posted to the following lists:\n\n  * security-announce at lists.vmware.com\n  * bugtraq at securityfocus.com\n  * full-disclosure at lists.grok.org.uk\n\nE-mail:  security at vmware.com\nPGP key at: http://kb.vmware.com/kb/1055\n\nVMware Security Center\nhttp://www.vmware.com/security\n\nVMware security response policy\nhttp://www.vmware.com/support/policies/security_response.html\n\nGeneral support life cycle policy\nhttp://www.vmware.com/support/policies/eos.html\n\nVMware Infrastructure support life cycle policy\nhttp://www.vmware.com/support/policies/eos_vi.html\n\nCopyright 2010 VMware Inc.  All rights reserved. \n\n-----BEGIN PGP SIGNATURE-----\nVersion: PGP Desktop 9.8.3 (Build 4028)\nCharset: utf-8\n\nwj8DBQFLj1c6S2KysvBH1xkRAnl5AJ9RcHVB7qooSwOPFdVoDFTjohDypgCfZ44O\n2z0ICIcntM88ZONMfDNUM6Y=\n=14fN\n-----END PGP SIGNATURE-----\n. \n\n\nFor the oldstable distribution (etch), this problem has been fixed in\nversion 1:4.2.2.p4+dfsg-2etch4. \n\nFor the stable distribution (lenny), this problem has been fixed in\nversion 1:4.2.4p4+dfsg-8lenny3. \n\nFor the testing (squeeze) and unstable (sid) distribution, this problem\nwill be fixed soon. \n\n\nWe recommend that you upgrade your ntp packages. \n\nUpgrade instructions\n- --------------------\n\nwget url\n        will fetch the file for you\ndpkg -i file.deb\n        will install the referenced file. \n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n        will update the internal database\napt-get upgrade\n        will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration. \n\n\nDebian GNU/Linux 4.0 alias etch\n- -------------------------------\n\nDebian (oldstable)\n- ------------------\n\nOldstable updates are available for alpha, amd64, arm, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. \n\nSource archives:\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.dsc\n    Size/MD5 checksum:      906 115e93f010e32aa1c90231461487503a\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg.orig.tar.gz\n    Size/MD5 checksum:  2199764 ad746cda2d90dbb9ed06fe164273c5d0\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.diff.gz\n    Size/MD5 checksum:   182632 80aa236bd0a39096c5e5d462c0b9b279\n\nArchitecture independent packages:\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.2.p4+dfsg-2etch4_all.deb\n    Size/MD5 checksum:    28596 df605f89c08a01116c2ff799777f6a2c\n  http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.2.p4+dfsg-2etch4_all.deb\n    Size/MD5 checksum:    28594 0c683ac7e7f5b131515f956aed87de3d\n  http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.2.p4+dfsg-2etch4_all.deb\n    Size/MD5 checksum:   912886 1af5a623cbf5f145f34dab7beefcd183\n\nalpha architecture (DEC Alpha)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_alpha.deb\n    Size/MD5 checksum:   408070 ca33235c58a26ad1a839084b4f2d385c\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_alpha.deb\n    Size/MD5 checksum:    65056 e527eb4c93d427c025374805fb5288cb\n\namd64 architecture (AMD x86_64 (AMD64))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_amd64.deb\n    Size/MD5 checksum:    62258 13a4f4faaf699913e421c093e598f2a9\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_amd64.deb\n    Size/MD5 checksum:   359384 1a289aa1f8439e2ef736cbf29bbe140f\n\narm architecture (ARM)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_arm.deb\n    Size/MD5 checksum:    59784 8a84cae4e8f643cbd3ed684e5a7eb0ff\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_arm.deb\n    Size/MD5 checksum:   344316 57066e8abfdf51c36d63600c993f3c20\n\nhppa architecture (HP PA RISC)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_hppa.deb\n    Size/MD5 checksum:   372448 0b8f9b90bb03a2f572066fe8b47c7202\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_hppa.deb\n    Size/MD5 checksum:    62160 88dc964fa357187ddc97d37513a863ba\n\ni386 architecture (Intel ia32)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_i386.deb\n    Size/MD5 checksum:    58316 90fc92e7a8f6582ee21076849ae0dfba\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_i386.deb\n    Size/MD5 checksum:   333772 e5fbae24686d444fff118f3ce9cc45db\n\nia64 architecture (Intel ia64)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_ia64.deb\n    Size/MD5 checksum:   523358 0032e3c9bcb4a27a312a47fb95d1f9a1\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_ia64.deb\n    Size/MD5 checksum:    74712 72c1b601f4beb41c6c04a54534ba9c51\n\nmips architecture (MIPS (Big Endian))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mips.deb\n    Size/MD5 checksum:   382868 2980d63a9ca6344e6a76698d0e808f8c\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mips.deb\n    Size/MD5 checksum:    63610 d523930b9b98d6353bf4e6fb7d7e57f5\n\nmipsel architecture (MIPS (Little Endian))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mipsel.deb\n    Size/MD5 checksum:    64134 e4042de5af081701911a7cece69c6cce\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mipsel.deb\n    Size/MD5 checksum:   390142 b50dc2bd5970f224b6994c460f8f560a\n\npowerpc architecture (PowerPC)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_powerpc.deb\n    Size/MD5 checksum:   358860 432b58ad621ac266455f7e5124d2eb1c\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_powerpc.deb\n    Size/MD5 checksum:    61760 2c9dd1b3a8d61bece4f420e533b7a6eb\n\ns390 architecture (IBM S/390)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_s390.deb\n    Size/MD5 checksum:   350300 40a28748d5016101c179bd4a22c08390\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_s390.deb\n    Size/MD5 checksum:    61242 14c08344bfd0561ced0d54aa2cd23a2e\n\nsparc architecture (Sun SPARC/UltraSPARC)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_sparc.deb\n    Size/MD5 checksum:    58584 0e573ef22b1514b12e01fa6ac2bb1ddb\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_sparc.deb\n    Size/MD5 checksum:   332284 4589ff44bc97ad73513d8ba5419c7845\n\n\nDebian GNU/Linux 5.0 alias lenny\n- --------------------------------\n\nDebian (stable)\n- ---------------\n\nStable updates are available for alpha, amd64, arm, armel, hppa, i386, ia64, mips, mipsel, powerpc, s390 and sparc. \n\nSource archives:\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.dsc\n    Size/MD5 checksum:     1459 81e70fe84f27e3bfabdbfb9f3122492b\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg.orig.tar.gz\n    Size/MD5 checksum:  2835029 dc2b3ac9cc04b0f29df35467514c9884\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.diff.gz\n    Size/MD5 checksum:   300928 b568f39eda3e46f27239ad44021f968c\n\nArchitecture independent packages:\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.4p4+dfsg-8lenny3_all.deb\n    Size/MD5 checksum:   927658 8db03976b7b105057ead2da4bae09219\n\nalpha architecture (DEC Alpha)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_alpha.deb\n    Size/MD5 checksum:    66706 9213dcba9a99fa363f0ce48c514a008b\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_alpha.deb\n    Size/MD5 checksum:   538492 de37b288ef933f34446ab78a8d8ed76b\n\namd64 architecture (AMD x86_64 (AMD64))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_amd64.deb\n    Size/MD5 checksum:    63836 a0b5b030abe6a6c32591366febcec1d1\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_amd64.deb\n    Size/MD5 checksum:   479472 277efe45a76a24da6ca14ae581d0a3a2\n\narm architecture (ARM)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_arm.deb\n    Size/MD5 checksum:    61220 d4905eea52795330e517acca903059f4\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_arm.deb\n    Size/MD5 checksum:   448164 cc28e545eb359eba225abfcb02cc4377\n\narmel architecture (ARM EABI)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_armel.deb\n    Size/MD5 checksum:    62794 e5a43b8076a77643cc742348f0e63de1\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_armel.deb\n    Size/MD5 checksum:   458908 3721b8d7b7a67b31db6249521dd9f015\n\nhppa architecture (HP PA RISC)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_hppa.deb\n    Size/MD5 checksum:    63872 53a7009f1888c06b162c258a9bb5d6fb\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_hppa.deb\n    Size/MD5 checksum:   485744 b8e950ba02a13ecacfe332db56c0c887\n\ni386 architecture (Intel ia32)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_i386.deb\n    Size/MD5 checksum:   434672 6ccfb060f39cc56f39ef8806865b767d\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_i386.deb\n    Size/MD5 checksum:    60114 2f0914ae2191ddf3f74529bc896299da\n\nia64 architecture (Intel ia64)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_ia64.deb\n    Size/MD5 checksum:   707812 eb960c732894d56589ba62d76c5ba568\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_ia64.deb\n    Size/MD5 checksum:    76366 6b5b986e454276661e8b483f095bd16e\n\nmips architecture (MIPS (Big Endian))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mips.deb\n    Size/MD5 checksum:    64116 ab287c70d2c2daf7b1a8808db8dcedc9\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mips.deb\n    Size/MD5 checksum:   490394 0009cb5333123767dc3afcde682d9e10\n\nmipsel architecture (MIPS (Little Endian))\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mipsel.deb\n    Size/MD5 checksum:   500786 3b842b738e616f301c31cd025c595235\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mipsel.deb\n    Size/MD5 checksum:    64776 fd31cdaa7a78d7e3fa072b746dd98e01\n\npowerpc architecture (PowerPC)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_powerpc.deb\n    Size/MD5 checksum:   490620 21d03b435c327c2884fe587a56fe10fb\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_powerpc.deb\n    Size/MD5 checksum:    65470 6966f71002ae63c104e608af1a7daa3a\n\ns390 architecture (IBM S/390)\n\n  http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_s390.deb\n    Size/MD5 checksum:    63678 4b143ad2444681bdb1ee44d395996a29\n  http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_s390.deb\n    Size/MD5 checksum:   474000 6fb44a33381b0d582599eb33896d8f0f\n\n\n  These files will probably be moved into the stable distribution on\n  its next update. \n\nProduct/Patch kit\n ITRC Download Location\n MD5 and SHA1 Checksum\n\nHP Tru64 UNIX v 5.1B-4 PK6 (BL27)\n  T64KIT1001787-V51BB27-ES-20100817\n  http://www.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001787-V51BB27-ES-20100817\n  MD5 results:  2b3a21a96b7855d9ca223f483bd5bfed\n  SHA1 results: ac2221c9d025008b258ac8592a210e16e775fbcf\n\nHP Tru64 UNIX v 5.1B-5 PK7 (BL28)\n  T64KIT1001786-V51BB28-ES-20100816\n  http://www13.itrc.hp.com/service/patch/patchDetail.do?patchid=T64KIT1001786-V51BB28-ES-20100816\n  MD5 results:  b34d028797577408d565da27d93c30a9\n  SHA1 results: b34d028797577408d565da27d93c30a9\n\nNote:\nThe patch kit installation instructions and the Patch Summary and Release Notes documents provide patch kit installation and removal instructions and a summary of each patch. Please read these documents prior to installing patches. \nHP TCP/IP Services for OpenVMS v5.4, v5.5, v5.6, and v5.7 (only affected by CVE-2009-3563) on Itanium and Alpha platforms. \nPatch kit installation instructions are provided in the file readme.txt . ESXi userworld update for ntp\n\n    The Network Time Protocol (NTP) is used to synchronize the time of\n    a computer client or server to another server or reference time\n    source. \n\n    A vulnerability was discovered which may allow remote attackers to\n    spoof certificates by using MD2 design flaws to generate a hash\n    collision in less than brute-force time. NOTE: the scope of this\n    issue is currently limited because the amount of computation\n    required is still large. \n\n    This update also includes security fixes that were first addressed\n    in version openssl-0.9.8e-12.el5.i386.rpm. \n\n    Kerberos is a network authentication protocol. It is designed to\n    provide strong authentication for client/server applications by\n    using secret-key cryptography. This update fixes a flaw found in pam_krb5. In\n    some non-default configurations (specifically, where pam_krb5 would\n    be the first module to prompt for a password), a remote attacker\n    could use this flaw to recognize valid usernames, which would aid a\n    dictionary-based password guess attack. Service Console package bind updated to 9.3.6-4.P1.el5_4.2\n\n    BIND (Berkeley Internet Name Daemon) is by far the most widely used\n    Domain Name System (DNS) software on the Internet. \n\n    A vulnerability was discovered which could allow remote attacker to\n    add the Authenticated Data (AD) flag to a forged NXDOMAIN response\n    for an existing domain. \n\n    A vulnerability was found in the way that bind handles out-of-\n    bailiwick data accompanying a secure response without re-fetching\n    from the original source, which could allow remote attackers to\n    have an unspecified impact via a crafted response. \n\n    NOTE: ESX does not use the BIND name service daemon by default. Service Console package gcc updated to 3.2.3-60\n\n    The GNU Compiler Collection includes front ends for C, C++,\n    Objective-C, Fortran, Java, and Ada, as well as libraries for these\n    languages\n\n    GNU Libtool\u0027s ltdl.c attempts to open .la library files in the\n    current working directory.  This could allow a local user to gain\n    privileges via a Trojan horse file.  The GNU C Compiler collection\n    (gcc) provided in ESX contains a statically linked version of the\n    vulnerable code, and is being replaced. Service Console package sudo updated to 1.6.9p17-6.el5_4\n\n    Sudo (su \"do\") allows a system administrator to delegate authority\n    to give certain users (or groups of users) the ability to run some\n    (or all) commands as root or another user while providing an audit\n    trail of the commands and their arguments. \n\n    When a pseudo-command is enabled, sudo permits a match between the\n    name of the pseudo-command and the name of an executable file in an\n    arbitrary directory, which allows local users to gain privileges\n    via a crafted executable file. \n\n    When the runas_default option is used, sudo does not properly set\n    group memberships, which allows local users to gain privileges via\n    a sudo command. \nCorrected:      2010-01-06 21:45:30 UTC (RELENG_8, 8.0-STABLE)\n                2010-01-06 21:45:30 UTC (RELENG_8_0, 8.0-RELEASE-p2)\n                2010-01-06 21:45:30 UTC (RELENG_7, 7.2-STABLE)\n                2010-01-06 21:45:30 UTC (RELENG_7_2, 7.2-RELEASE-p6)\n                2010-01-06 21:45:30 UTC (RELENG_7_1, 7.1-RELEASE-p10)\n                2010-01-06 21:45:30 UTC (RELENG_6, 6.4-STABLE)\n                2010-01-06 21:45:30 UTC (RELENG_6_4, 6.4-RELEASE-p9)\n                2010-01-06 21:45:30 UTC (RELENG_6_3, 6.3-RELEASE-p15)\nCVE Name:       CVE-2009-3563\n\nFor general information regarding FreeBSD Security Advisories,\nincluding descriptions of the fields above, security branches, and the\nfollowing sections, please visit \u003cURL:http://security.FreeBSD.org/\u003e. \n\nII. \n\nIII. \n\nIV.  Workaround\n\nProper filtering of mode 7 NTP packets by a firewall can limit the\nnumber of systems used to attack your resources.   Solution\n\nPerform one of the following:\n\n1) Upgrade your vulnerable system to 6-STABLE, 7-STABLE or 8-STABLE,\nor to the RELENG_8_0, RELENG_7_2, RELENG_7_1, RELENG_6_4, or\nRELENG_6_3 security branch dated after the correction date. \n\n2) To patch your present system:\n\nThe following patches have been verified to apply to FreeBSD 6.3, 6.4,\n7.1, 7.2, and 8.0 systems. \n\na) Download the relevant patch from the location below, and verify the\ndetached PGP signature using your PGP utility. \n\n# fetch http://security.FreeBSD.org/patches/SA-10:02/ntpd.patch\n# fetch http://security.FreeBSD.org/patches/SA-10:02/ntpd.patch.asc\n\nb) Execute the following commands as root:\n\n# cd /usr/src\n# patch \u003c /path/to/patch\n# cd /usr/src/usr.sbin/ntp/ntpd\n# make obj \u0026\u0026 make depend \u0026\u0026 make \u0026\u0026 make install\n# /etc/rc.d/ntpd restart\n\nVI.  Correction details\n\nThe following list contains the revision numbers of each file that was\ncorrected in FreeBSD. \n\nCVS:\n\nBranch                                                           Revision\n  Path\n- -------------------------------------------------------------------------\nRELENG_6\n  src/contrib/ntp/ntpd/ntp_request.c                          1.1.1.4.8.2\nRELENG_6_4\n  src/UPDATING                                            1.416.2.40.2.13\n  src/sys/conf/newvers.sh                                  1.69.2.18.2.15\n  src/contrib/ntp/ntpd/ntp_request.c                      1.1.1.4.8.1.2.1\nRELENG_6_3\n  src/UPDATING                                            1.416.2.37.2.20\n  src/sys/conf/newvers.sh                                  1.69.2.15.2.19\n  src/contrib/ntp/ntpd/ntp_request.c                         1.1.1.4.20.1\nRELENG_7\n  src/contrib/ntp/ntpd/ntp_request.c                         1.1.1.4.18.2\nRELENG_7_2\n  src/UPDATING                                             1.507.2.23.2.9\n  src/sys/conf/newvers.sh                                  1.72.2.11.2.10\n  src/contrib/ntp/ntpd/ntp_request.c                     1.1.1.4.18.1.4.1\nRELENG_7_1\n  src/UPDATING                                            1.507.2.13.2.13\n  src/sys/conf/newvers.sh                                   1.72.2.9.2.14\n  src/contrib/ntp/ntpd/ntp_request.c                     1.1.1.4.18.1.2.1\nRELENG_8\n  src/contrib/ntp/ntpd/ntp_request.c                              1.2.2.1\nRELENG_8_0\n  src/UPDATING                                              1.632.2.7.2.5\n  src/sys/conf/newvers.sh                                    1.83.2.6.2.5\n  src/contrib/ntp/ntpd/ntp_request.c                              1.2.4.1\n- -------------------------------------------------------------------------\n\nSubversion:\n\nBranch/path                                                      Revision\n- -------------------------------------------------------------------------\nstable/6/                                                         r201679\nreleng/6.4/                                                       r201679\nreleng/6.3/                                                       r201679\nstable/7/                                                         r201679\nreleng/7.2/                                                       r201679\nreleng/7.1/                                                       r201679\nstable/8/                                                         r201679\nreleng/8.0/                                                       r201679\nhead/                                                             r200576\n- -------------------------------------------------------------------------\n\nVII. \nThe upgrade is available by downloading from software.hp.com -\u003e HPUX 11i\nSoftware -\u003e Internet ready and networking -\u003e HP-UX Network Time Protocol\nversion 4 or directly from https://h20392.www2.hp.com/portal/swdepot/displayP\nroductInfo.do?productNumber=HPUX-NTP\nPlease review the Installation link at the bottom of the page.  For other issues about\nthe content of this Security Bulletin, send e-mail to security-alert@hp.com. \n\nRelease Date: 2011-03-28\nLast Updated: 2011-03-24\n\n ------------------------------------------------------------------------------\n\nPotential Security Impact: Remote Denial of Service (DoS)\n\nSource: Hewlett-Packard Company, HP Software Security Response Team\n\nVULNERABILITY SUMMARY\nA potential security vulnerability has been identified with HP-UX running XNTP. The vulnerability could be exploited remotely create a Denial of Service (DoS). \n\nReferences: CVE-2009-3563\n\nSUPPORTED SOFTWARE VERSIONS*: ONLY impacted versions are listed. \nHP-UX B.11.11, B.11.23, B.11.31 running XNTP. \n\nBACKGROUND\n\nCVSS 2.0 Base Metrics\n===========================================================\n  Reference              Base Vector             Base Score\nCVE-2009-3563    (AV:N/AC:L/Au:N/C:N/I:P/A:P)       6.4\n===========================================================\n             Information on CVSS is documented\n            in HP Customer Notice: HPSN-2008-002\n\nRESOLUTION\n\nHP has provided the following patches to resolve this vulnerability. \nThe patches are available by contacting HP Support. \n\nhttp://itrc.hp.com\n\nHP-UX Release / Patch ID\n\nB.11.11 (11i v1) / PHNE_41907\n\nB.11.23 (11i v2) / PHNE_41908\n\nB.11.31 (11i v3) / PHNE_41177\n\nMANUAL ACTIONS: No\n\nPRODUCT SPECIFIC INFORMATION\n\nHP-UX Software Assistant: HP-UX Software Assistant is an enhanced application that replaces HP-UX Security Patch Check. It analyzes all Security Bulletins issued by HP and lists recommended actions that may apply to a specific HP-UX system. It can also download patches and create a depot automatically. For more information see: https://www.hp.com/go/swa\n\nThe following text is for use by the HP-UX Software Assistant. \n\nAFFECTED VERSIONS\n\nHP-UX B.11.11\n==================\nInternetSrvcs.INETSVCS-BOOT\naction: install patch PHNE_41907 or subsequent\n\nHP-UX B.11.23\n==================\nInternetSrvcs.INETSVCS2-BOOT\naction: install patch PHNE_41908 or subsequent\n\nHP-UX B.11.31\n==================\nNTP.NTP-RUN\naction: install patch PHNE_41177 or subsequent\n\nEND AFFECTED VERSIONS\n\nHISTORY\nVersion:1 (rev.1) 28 March 2011 Initial release\n\nThird Party Security Patches: Third party security patches that are to be installed on systems running HP software products should be applied in accordance with the customer\u0027s patch management policy. \n\nSupport: For further information, contact normal HP Services support channel. \n\nReport: To report a potential security vulnerability with any HP supported product, send Email to: security-alert@hp.com\nIt is strongly recommended that security related information being communicated to HP be encrypted using PGP, especially exploit information. \nTo get the security-alert PGP key, please send an e-mail message as follows:\n  To: security-alert@hp.com\n  Subject: get key\nSubscribe: To initiate a subscription to receive future HP Security Bulletins via Email:\nhttp://h30046.www3.hp.com/driverAlertProfile.php?regioncode=NA\u0026langcode=USENG\u0026jumpid=in_SC-GEN__driverITRC\u0026topiccode=ITRC\nOn the web page: ITRC security bulletins and patch sign-up\nUnder Step1: your ITRC security bulletins and patches\n    -check ALL categories for which alerts are required and continue. \nUnder Step2: your ITRC operating systems\n    -verify your operating system selections are checked and save. \n\nTo update an existing subscription: http://h30046.www3.hp.com/subSignIn.php\nLog in on the web page: Subscriber\u0027s choice for Business: sign-in. \nOn the web page: Subscriber\u0027s Choice: your profile summary - use Edit Profile to update appropriate sections. \n\nTo review previously published Security Bulletins visit: http://www.itrc.hp.com/service/cki/secBullArchive.do\n\n* The Software Product Category that this Security Bulletin\nrelates to is represented by the 5th and 6th characters\nof the Bulletin number in the title:\n\nGN = HP General SW\nMA = HP Management Agents\nMI = Misc. 3rd Party SW\nMP = HP MPE/iX\nNS = HP NonStop Servers\nOV = HP OpenVMS\nPI = HP Printing \u0026 Imaging\nST = HP Storage SW\nTL = HP Trusted Linux\nTU = HP Tru64 UNIX\nUX = HP-UX\nVV = HP VirtualVault\n\nSystem management and security procedures must be reviewed frequently to maintain system integrity. HP is continually reviewing and enhancing the security features of software products to provide customers with current secure solutions. \n\n\"HP is broadly distributing this Security Bulletin in order to bring to the attention of users of the affected HP products the important security information contained in this Bulletin. HP recommends that all users determine the applicability of this information to their individual situations and take appropriate action. HP does not warrant that this information is necessarily accurate or complete for all user situations and, consequently, HP will not be responsible for any damages resulting from user\u0027s use or disregard of the information provided in this Bulletin. To the extent permitted by law, HP disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose, title and non-infringement.\"\n\nCopyright 2009 Hewlett-Packard Development Company, L.P. \nHewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information provided is provided \"as is\" without warranty of any kind. To the extent permitted by law, neither HP or its affiliates, subcontractors or suppliers will be liable for incidental,special or consequential damages including downtime cost; lost profits;damages relating to the procurement of substitute products or services; or damages for loss of data, or software restoration. The information in this document is subject to change without notice. Hewlett-Packard Company and the names of Hewlett-Packard products referenced herein are trademarks of Hewlett-Packard Company in the United States and other countries. Other product and company names mentioned herein may be trademarks of their respective owners",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          },
          {
            "db": "CERT/CC",
            "id": "VU#568372"
          },
          {
            "db": "CERT/CC",
            "id": "VU#417980"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "BID",
            "id": "37255"
          },
          {
            "db": "VULMON",
            "id": "CVE-2009-3563"
          },
          {
            "db": "PACKETSTORM",
            "id": "83621"
          },
          {
            "db": "PACKETSTORM",
            "id": "86900"
          },
          {
            "db": "PACKETSTORM",
            "id": "83586"
          },
          {
            "db": "PACKETSTORM",
            "id": "94512"
          },
          {
            "db": "PACKETSTORM",
            "id": "105299"
          },
          {
            "db": "PACKETSTORM",
            "id": "90046"
          },
          {
            "db": "PACKETSTORM",
            "id": "84917"
          },
          {
            "db": "PACKETSTORM",
            "id": "121645"
          },
          {
            "db": "PACKETSTORM",
            "id": "99964"
          }
        ],
        "trust": 4.23
      },
      "external_ids": {
        "_id": null,
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2009-3563",
            "trust": 6.2
          },
          {
            "db": "CERT/CC",
            "id": "VU#568372",
            "trust": 3.7
          },
          {
            "db": "BID",
            "id": "37255",
            "trust": 2.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#417980",
            "trust": 2.6
          },
          {
            "db": "SECTRACK",
            "id": "1023298",
            "trust": 2.5
          },
          {
            "db": "VUPEN",
            "id": "ADV-2010-0510",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "38764",
            "trust": 1.9
          },
          {
            "db": "VUPEN",
            "id": "ADV-2010-0528",
            "trust": 1.1
          },
          {
            "db": "VUPEN",
            "id": "ADV-2010-0993",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "37922",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "37629",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "38832",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "38834",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "39593",
            "trust": 1.1
          },
          {
            "db": "SECUNIA",
            "id": "38794",
            "trust": 1.1
          },
          {
            "db": "JUNIPER",
            "id": "JSA10673",
            "trust": 1.1
          },
          {
            "db": "JUNIPER",
            "id": "JSA10691",
            "trust": 1.1
          },
          {
            "db": "JVN",
            "id": "JVNVU93188600",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446",
            "trust": 0.8
          },
          {
            "db": "FEDORA",
            "id": "FEDORA-2009-13090",
            "trust": 0.6
          },
          {
            "db": "FEDORA",
            "id": "FEDORA-2009-13121",
            "trust": 0.6
          },
          {
            "db": "REDHAT",
            "id": "RHSA-2010:0095",
            "trust": 0.6
          },
          {
            "db": "REDHAT",
            "id": "RHSA-2009:1651",
            "trust": 0.6
          },
          {
            "db": "REDHAT",
            "id": "RHSA-2009:1648",
            "trust": 0.6
          },
          {
            "db": "DEBIAN",
            "id": "DSA-1948",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113",
            "trust": 0.6
          },
          {
            "db": "VULMON",
            "id": "CVE-2009-3563",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "83621",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "86900",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "83586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "94512",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "105299",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "121022",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "90046",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "84917",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "121645",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "99964",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#568372"
          },
          {
            "db": "CERT/CC",
            "id": "VU#417980"
          },
          {
            "db": "VULMON",
            "id": "CVE-2009-3563"
          },
          {
            "db": "BID",
            "id": "37255"
          },
          {
            "db": "PACKETSTORM",
            "id": "83621"
          },
          {
            "db": "PACKETSTORM",
            "id": "86900"
          },
          {
            "db": "PACKETSTORM",
            "id": "83586"
          },
          {
            "db": "PACKETSTORM",
            "id": "94512"
          },
          {
            "db": "PACKETSTORM",
            "id": "105299"
          },
          {
            "db": "PACKETSTORM",
            "id": "121022"
          },
          {
            "db": "PACKETSTORM",
            "id": "90046"
          },
          {
            "db": "PACKETSTORM",
            "id": "84917"
          },
          {
            "db": "PACKETSTORM",
            "id": "121645"
          },
          {
            "db": "PACKETSTORM",
            "id": "99964"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          }
        ]
      },
      "id": "VAR-200912-0769",
      "iot": {
        "_id": null,
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.42302127599999995
      },
      "last_update_date": "2026-03-07T20:12:15.882000Z",
      "patch": {
        "_id": null,
        "data": [
          {
            "title": "NV10-001 Fujitsu Fujitsu \u00a0 Security information",
            "trust": 0.8,
            "url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026ID=4958"
          },
          {
            "title": "Debian CVElist Bug Report Logs: ntp: CVE-2009-3563 DoS through mode 7 packets",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_cvelist_bugreportlogs\u0026qid=6af87915827741e9268f059d7932cd80"
          },
          {
            "title": "Ubuntu Security Notice: ntp vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=ubuntu_security_notice\u0026qid=USN-867-1"
          },
          {
            "title": "Debian Security Advisories: DSA-1948-1 ntp -- denial of service",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=dccc5b29483e1b8bed9fa984fc8c8c6e"
          },
          {
            "title": "Cisco: Network Time Protocol Package Remote\u00a0Message Loop Denial of Service\u00a0Vulnerability",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=Cisco-SA-20091208-CVE-2009-3563"
          },
          {
            "title": "Debian Security Advisories: DSA-1992-1 chrony -- several vulnerabilities",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=debian_security_advisories\u0026qid=0329811e8a24491e35ce229b8b52259d"
          },
          {
            "title": "VMware Security Advisories: ESX Service Console and vMA third party updates",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=vmware_security_advisories\u0026qid=5f45ebecc93cf53cc0b45af03208cba6"
          },
          {
            "title": "VMware Security Advisories: ESXi utilities and ESX Service Console third party updates",
            "trust": 0.1,
            "url": "https://vulmon.com/vendoradvisory?qidtp=vmware_security_advisories\u0026qid=9ca0d654a28a118d1f99d0ae3b1753e8"
          }
        ],
        "sources": [
          {
            "db": "VULMON",
            "id": "CVE-2009-3563"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          }
        ]
      },
      "problemtype_data": {
        "_id": null,
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          },
          {
            "problemtype": "design issues (CWE-DesignError) [NVD evaluation ]",
            "trust": 0.8
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          }
        ]
      },
      "references": {
        "_id": null,
        "data": [
          {
            "trust": 3.0,
            "url": "http://www.kb.cert.org/vuls/id/568372"
          },
          {
            "trust": 2.5,
            "url": "http://security-tracker.debian.org/tracker/cve-2009-3563"
          },
          {
            "trust": 2.5,
            "url": "http://securitytracker.com/id?1023298"
          },
          {
            "trust": 2.5,
            "url": "http://www.securityfocus.com/bid/37255"
          },
          {
            "trust": 2.3,
            "url": "https://support.ntp.org/bugs/show_bug.cgi?id=1331"
          },
          {
            "trust": 1.9,
            "url": "http://www.vupen.com/english/advisories/2010/0510"
          },
          {
            "trust": 1.9,
            "url": "http://secunia.com/advisories/38764"
          },
          {
            "trust": 1.8,
            "url": "http://support.ntp.org/bin/view/main/securitynotice#dos_attack_from_certain_ntp_mode"
          },
          {
            "trust": 1.8,
            "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560074"
          },
          {
            "trust": 1.7,
            "url": "https://rhn.redhat.com/errata/rhsa-2009-1651.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.kb.cert.org/vuls/id/mapg-7x7vd7"
          },
          {
            "trust": 1.7,
            "url": "http://www.debian.org/security/2009/dsa-1948"
          },
          {
            "trust": 1.7,
            "url": "https://rhn.redhat.com/errata/rhsa-2009-1648.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.kb.cert.org/vuls/id/mapg-7x7v6j"
          },
          {
            "trust": 1.7,
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=531213"
          },
          {
            "trust": 1.7,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-december/msg00809.html"
          },
          {
            "trust": 1.7,
            "url": "https://www.redhat.com/archives/fedora-package-announce/2009-december/msg00763.html"
          },
          {
            "trust": 1.7,
            "url": "https://rhn.redhat.com/errata/rhsa-2010-0095.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.ubuntu.com/usn/usn-867-1"
          },
          {
            "trust": 1.6,
            "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=19540"
          },
          {
            "trust": 1.4,
            "url": "http://support.avaya.com/css/p8/documents/100071808"
          },
          {
            "trust": 1.4,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg1iz71047"
          },
          {
            "trust": 1.4,
            "url": "http://www-01.ibm.com/support/docview.wss?uid=isg1iz68659"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-66-275590-1"
          },
          {
            "trust": 1.1,
            "url": "https://lists.ntp.org/pipermail/announce/2009-december/000086.html"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/37922"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/37629"
          },
          {
            "trust": 1.1,
            "url": "http://aix.software.ibm.com/aix/efixes/security/xntpd_advisory.asc"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/38794"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2010/0528"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/38832"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/38834"
          },
          {
            "trust": 1.1,
            "url": "http://lists.vmware.com/pipermail/security-announce/2010/000082.html"
          },
          {
            "trust": 1.1,
            "url": "ftp://ftp.netbsd.org/pub/netbsd/security/advisories/netbsd-sa2010-005.txt.asc"
          },
          {
            "trust": 1.1,
            "url": "http://secunia.com/advisories/39593"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2010/0993"
          },
          {
            "trust": 1.1,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-77-1021781.1-1"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=136482797910018\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://marc.info/?l=bugtraq\u0026m=130168580504508\u0026w=2"
          },
          {
            "trust": 1.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10691"
          },
          {
            "trust": 1.1,
            "url": "http://kb.juniper.net/infocenter/index?page=content\u0026id=jsa10673"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a7076"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a19376"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a12141"
          },
          {
            "trust": 1.1,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a11225"
          },
          {
            "trust": 1.0,
            "url": "https://www.kb.cert.org/vuls/id/417980"
          },
          {
            "trust": 0.9,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3563"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc2827"
          },
          {
            "trust": 0.8,
            "url": "http://tools.ietf.org/html/rfc3704"
          },
          {
            "trust": 0.8,
            "url": "http://www.ntp.org/downloads.html"
          },
          {
            "trust": 0.8,
            "url": "http://bugs.gentoo.org/show_bug.cgi?id=290881"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/cert/jvnvu568372/"
          },
          {
            "trust": 0.8,
            "url": "https://jvn.jp/vu/jvnvu93188600/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2009-3563"
          },
          {
            "trust": 0.8,
            "url": "https://kb.cert.org/vuls/id/417980"
          },
          {
            "trust": 0.4,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3563"
          },
          {
            "trust": 0.3,
            "url": "http://blogs.oracle.com/sunsecurity/entry/multiple_vulnerabilities_in_network_time"
          },
          {
            "trust": 0.3,
            "url": "http://support.nortel.com/go/main.jsp?cscat=bltndetail\u0026id=985679"
          },
          {
            "trust": 0.3,
            "url": "http://www.ntp.org/"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/css/p8/documents/100073364"
          },
          {
            "trust": 0.3,
            "url": "http://support.avaya.com/css/p8/documents/100071806"
          },
          {
            "trust": 0.3,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-0159"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1386"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2908"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1377"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3620"
          },
          {
            "trust": 0.2,
            "url": "http://www.vmware.com/security"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1387"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3228"
          },
          {
            "trust": 0.2,
            "url": "http://kb.vmware.com/kb/1055"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1378"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2695"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3621"
          },
          {
            "trust": 0.2,
            "url": "http://www.vmware.com/support/policies/security_response.html"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3547"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3286"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3613"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2695"
          },
          {
            "trust": 0.2,
            "url": "http://www.vmware.com/support/policies/eos.html"
          },
          {
            "trust": 0.2,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2908"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-0590"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3726"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3612"
          },
          {
            "trust": 0.2,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1379"
          },
          {
            "trust": 0.2,
            "url": "http://lists.vmware.com/cgi-bin/mailman/listinfo/security-announce"
          },
          {
            "trust": 0.2,
            "url": "http://www.vmware.com/support/policies/eos_vi.html"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/subsignin.php"
          },
          {
            "trust": 0.2,
            "url": "http://www.itrc.hp.com/service/cki/secbullarchive.do"
          },
          {
            "trust": 0.2,
            "url": "http://h30046.www3.hp.com/driveralertprofile.php?regioncode=na\u0026langcode=useng\u0026jumpid=in_sc-gen__driveritrc\u0026topiccode=itrc"
          },
          {
            "trust": 0.2,
            "url": "http://h41183.www4.hp.com/signup_alerts.php?jumpid=hpsc_secbulletins"
          },
          {
            "trust": 0.2,
            "url": "https://www.hp.com/go/swa"
          },
          {
            "trust": 0.1,
            "url": "https://cwe.mitre.org/data/definitions/.html"
          },
          {
            "trust": 0.1,
            "url": "https://usn.ubuntu.com/867-1/"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov"
          },
          {
            "trust": 0.1,
            "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20091208-cve-2009-3563"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/advisories"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4022"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3720"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4552"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1377"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3560"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2904"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2849"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2905"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-3916"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1189"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-4552"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1386"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3720"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-4022"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-0590"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1387"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2849"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2008-4316"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3560"
          },
          {
            "trust": 0.1,
            "url": "http://tinyurl.com/yfekgrx"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-0115"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1379"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2008-4316"
          },
          {
            "trust": 0.1,
            "url": "https://hostupdate.vmware.com/software/vum/offline/release-192-20100228-732"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2905"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2904"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1378"
          },
          {
            "trust": 0.1,
            "url": "http://kb.vmware.com/kb/1018403"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_alpha.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.2.p4+dfsg-2etch4_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/faq"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_alpha.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_alpha.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp-simple_4.2.2.p4+dfsg-2etch4_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp-refclock_4.2.2.p4+dfsg-2etch4_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_hppa.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_s390.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_armel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mips.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_mipsel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_alpha.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.4p4+dfsg-8lenny3_armel.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/"
          },
          {
            "trust": 0.1,
            "url": "http://packages.debian.org/\u003cpkg\u003e"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_arm.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp-doc_4.2.4p4+dfsg-8lenny3_all.deb"
          },
          {
            "trust": 0.1,
            "url": "http://www.debian.org/security/"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.2.p4+dfsg-2etch4_sparc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntpdate_4.2.2.p4+dfsg-2etch4_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.debian.org/pool/updates/main/n/ntp/ntp_4.2.4p4+dfsg-8lenny3_ia64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://www13.itrc.hp.com/service/patch/patchdetail.do?patchid=t64kit1001786-v51bb28-es-20100816"
          },
          {
            "trust": 0.1,
            "url": "http://www.itrc.hp.com/service/patch/patchdetail.do?patchid=t64kit1001787-v51bb27-es-20100817"
          },
          {
            "trust": 0.1,
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/"
          },
          {
            "trust": 0.1,
            "url": "https://h20566.www2.hp.com/portal/site/hpsc/public/kb/docdisplay/?docid=emr_na-c02964430"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-1252"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-0158"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3547"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3286"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3080"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2007-4567"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0001"
          },
          {
            "trust": 0.1,
            "url": "http://bit.ly/aqtcqn"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-4567"
          },
          {
            "trust": 0.1,
            "url": "http://kb.vmware.com/kb/1013127"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-4536"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2409"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4536"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4021"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0427"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0426"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3621"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2006-6304"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3939"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4020"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3736"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3556"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-4538"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0097"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4537"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0290"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3612"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4138"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4272"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-0382"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-1384"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4355"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4141"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3613"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4538"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3620"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3080"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-6304"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-2910"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3556"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-4212"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-4537"
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2009-3889"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-2910"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3228"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2009-3726"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/patches/sa-10:02/ntpd.patch"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/\u003e."
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/patches/sa-10:02/ntpd.patch.asc"
          },
          {
            "trust": 0.1,
            "url": "http://security.freebsd.org/advisories/freebsd-sa-10:02.ntpd.asc"
          },
          {
            "trust": 0.1,
            "url": "https://h20392.www2.hp.com/portal/swdepot/displayp"
          },
          {
            "trust": 0.1,
            "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/"
          },
          {
            "trust": 0.1,
            "url": "http://h20564.www2.hp.com/portal/site/hpsc/public/kb/secbullarchive/"
          },
          {
            "trust": 0.1,
            "url": "http://itrc.hp.com"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#568372"
          },
          {
            "db": "VULMON",
            "id": "CVE-2009-3563"
          },
          {
            "db": "BID",
            "id": "37255"
          },
          {
            "db": "PACKETSTORM",
            "id": "83621"
          },
          {
            "db": "PACKETSTORM",
            "id": "86900"
          },
          {
            "db": "PACKETSTORM",
            "id": "83586"
          },
          {
            "db": "PACKETSTORM",
            "id": "94512"
          },
          {
            "db": "PACKETSTORM",
            "id": "105299"
          },
          {
            "db": "PACKETSTORM",
            "id": "121022"
          },
          {
            "db": "PACKETSTORM",
            "id": "90046"
          },
          {
            "db": "PACKETSTORM",
            "id": "84917"
          },
          {
            "db": "PACKETSTORM",
            "id": "121645"
          },
          {
            "db": "PACKETSTORM",
            "id": "99964"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446"
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563"
          }
        ]
      },
      "sources": {
        "_id": null,
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#568372",
            "ident": null
          },
          {
            "db": "CERT/CC",
            "id": "VU#417980",
            "ident": null
          },
          {
            "db": "VULMON",
            "id": "CVE-2009-3563",
            "ident": null
          },
          {
            "db": "BID",
            "id": "37255",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "83621",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "86900",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "83586",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "94512",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "105299",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "121022",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "90046",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "84917",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "121645",
            "ident": null
          },
          {
            "db": "PACKETSTORM",
            "id": "99964",
            "ident": null
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113",
            "ident": null
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2009-002446",
            "ident": null
          },
          {
            "db": "NVD",
            "id": "CVE-2009-3563",
            "ident": null
          }
        ]
      },
      "sources_release_date": {
        "_id": null,
        "data": [
          {
            "date": "2009-12-08T00:00:00",
            "db": "CERT/CC",
            "id": "VU#568372",
            "ident": null
          },
          {
            "date": "2024-03-19T00:00:00",
            "db": "CERT/CC",
            "id": "VU#417980",
            "ident": null
          },
          {
            "date": "2009-12-09T00:00:00",
            "db": "VULMON",
            "id": "CVE-2009-3563",
            "ident": null
          },
          {
            "date": "2009-12-08T00:00:00",
            "db": "BID",
            "id": "37255",
            "ident": null
          },
          {
            "date": "2009-12-10T15:41:54",
            "db": "PACKETSTORM",
            "id": "83621",
            "ident": null
          },
          {
            "date": "2010-03-05T03:32:24",
            "db": "PACKETSTORM",
            "id": "86900",
            "ident": null
          },
          {
            "date": "2009-12-09T00:03:34",
            "db": "PACKETSTORM",
            "id": "83586",
            "ident": null
          },
          {
            "date": "2010-10-05T21:10:50",
            "db": "PACKETSTORM",
            "id": "94512",
            "ident": null
          },
          {
            "date": "2011-09-23T12:12:00",
            "db": "PACKETSTORM",
            "id": "105299",
            "ident": null
          },
          {
            "date": "2013-03-30T12:12:00",
            "db": "PACKETSTORM",
            "id": "121022",
            "ident": null
          },
          {
            "date": "2010-05-28T20:14:56",
            "db": "PACKETSTORM",
            "id": "90046",
            "ident": null
          },
          {
            "date": "2010-01-07T19:01:14",
            "db": "PACKETSTORM",
            "id": "84917",
            "ident": null
          },
          {
            "date": "2013-05-15T16:22:00",
            "db": "PACKETSTORM",
            "id": "121645",
            "ident": null
          },
          {
            "date": "2011-04-01T21:06:48",
            "db": "PACKETSTORM",
            "id": "99964",
            "ident": null
          },
          {
            "date": "2009-12-09T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200912-113",
            "ident": null
          },
          {
            "date": "2010-01-25T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2009-002446",
            "ident": null
          },
          {
            "date": "2009-12-09T18:30:00.390000",
            "db": "NVD",
            "id": "CVE-2009-3563",
            "ident": null
          }
        ]
      },
      "sources_update_date": {
        "_id": null,
        "data": [
          {
            "date": "2011-07-22T00:00:00",
            "db": "CERT/CC",
            "id": "VU#568372",
            "ident": null
          },
          {
            "date": "2024-03-20T00:00:00",
            "db": "CERT/CC",
            "id": "VU#417980",
            "ident": null
          },
          {
            "date": "2017-09-19T00:00:00",
            "db": "VULMON",
            "id": "CVE-2009-3563",
            "ident": null
          },
          {
            "date": "2015-05-12T19:46:00",
            "db": "BID",
            "id": "37255",
            "ident": null
          },
          {
            "date": "2009-12-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200912-113",
            "ident": null
          },
          {
            "date": "2024-03-22T04:19:00",
            "db": "JVNDB",
            "id": "JVNDB-2009-002446",
            "ident": null
          },
          {
            "date": "2025-04-09T00:30:58.490000",
            "db": "NVD",
            "id": "CVE-2009-3563",
            "ident": null
          }
        ]
      },
      "threat_type": {
        "_id": null,
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "83621"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          }
        ],
        "trust": 0.7
      },
      "title": {
        "_id": null,
        "data": "NTP mode 7 denial-of-service vulnerability",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#568372"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "_id": null,
        "data": "design error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200912-113"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0288

    Vulnerability from variot - Updated: 2025-04-03 21:29

    Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Gateway Security 400 is prone to a denial-of-service vulnerability.

    For more information: SA17553

    Several other bugs have also been fixed in this update.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0288",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "gateway security 300",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "2.0"
          },
          {
            "model": "gateway security 5000 series",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "3.0"
          },
          {
            "model": "gateway security 400",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "2.0"
          },
          {
            "model": "gateway security 5300",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "1.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "gateway security 5310",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "symantec",
            "version": "1.0"
          },
          {
            "model": "firewall vpn appliance 200",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "symantec",
            "version": "*"
          },
          {
            "model": "gateway security 5100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "symantec",
            "version": "*"
          },
          {
            "model": "gateway security 5400",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "symantec",
            "version": "2.0.1"
          },
          {
            "model": "firewall vpn appliance 100",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "symantec",
            "version": "*"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "firewall vpn appliance 100",
            "scope": null,
            "trust": 0.6,
            "vendor": "symantec",
            "version": null
          },
          {
            "model": "firewall vpn appliance 200",
            "scope": null,
            "trust": 0.6,
            "vendor": "symantec",
            "version": null
          },
          {
            "model": "gateway security 5100",
            "scope": null,
            "trust": 0.6,
            "vendor": "symantec",
            "version": null
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "54002.0.1"
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "53101.0"
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "53001.0"
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "5100"
          },
          {
            "model": "gateway security series",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "50003.0"
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "4002.0"
          },
          {
            "model": "gateway security",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "3002.0"
          },
          {
            "model": "firewall/vpn appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "200"
          },
          {
            "model": "firewall/vpn appliance",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "100"
          },
          {
            "model": "enterprise firewall solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "enterprise firewall windows",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "symantec",
            "version": "8.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89215"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Secunia",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2005-3768",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3768",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-14976",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3768",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-338",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-14976",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Gateway Security 400 is prone to a denial-of-service vulnerability. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89215"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 2.6
          },
          {
            "db": "SECTRACK",
            "id": "1015247",
            "trust": 2.0
          },
          {
            "db": "SECTRACK",
            "id": "1015249",
            "trust": 2.0
          },
          {
            "db": "SECTRACK",
            "id": "1015248",
            "trust": 2.0
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768",
            "trust": 2.0
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2517",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338",
            "trust": 0.7
          },
          {
            "db": "BID",
            "id": "89215",
            "trust": 0.4
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "db": "BID",
            "id": "89215"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "id": "VAR-200511-0288",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-03T21:29:26.718000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 2.0,
            "url": "http://securitytracker.com/id?1015247"
          },
          {
            "trust": 2.0,
            "url": "http://securitytracker.com/id?1015248"
          },
          {
            "trust": 2.0,
            "url": "http://securitytracker.com/id?1015249"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17684"
          },
          {
            "trust": 1.5,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2005/2517"
          },
          {
            "trust": 0.9,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2517"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "db": "BID",
            "id": "89215"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "db": "BID",
            "id": "89215"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "date": "2005-11-22T00:00:00",
            "db": "BID",
            "id": "89215"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-11-22T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "date": "2005-11-23T00:03:00",
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-14976"
          },
          {
            "date": "2005-11-22T00:00:00",
            "db": "BID",
            "id": "89215"
          },
          {
            "date": "2005-11-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3768"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-338"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0162

    Vulnerability from variot - Updated: 2025-04-03 20:05

    The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner.

    For more information: SA17553

    Several other bugs have also been fixed in this update.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0162",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "firewall",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "clavister",
            "version": "8.30.01"
          },
          {
            "model": "security gateway",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "clavister",
            "version": "8.40.05"
          },
          {
            "model": "security gateway",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "clavister",
            "version": "8.60.01_rc1"
          },
          {
            "model": "security gateway",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "clavister",
            "version": "8.50.02"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Secunia",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 0.7
      },
      "cve": "CVE-2005-3915",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/cvss/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvss/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "nvd@nist.gov",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3915",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 1.0,
                "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
                "version": "2.0"
              },
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "VULHUB",
                "availabilityImpact": "PARTIAL",
                "baseScore": 7.5,
                "confidentialityImpact": "PARTIAL",
                "exploitabilityScore": 10.0,
                "id": "VHN-15123",
                "impactScore": 6.4,
                "integrityImpact": "PARTIAL",
                "severity": "HIGH",
                "trust": 0.1,
                "vectorString": "AV:N/AC:L/AU:N/C:P/I:P/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "nvd@nist.gov",
                "id": "CVE-2005-3915",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-482",
                "trust": 0.6,
                "value": "HIGH"
              },
              {
                "author": "VULHUB",
                "id": "VHN-15123",
                "trust": 0.1,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.34
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 2.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2566",
            "trust": 1.7
          },
          {
            "db": "BID",
            "id": "15560",
            "trust": 1.7
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915",
            "trust": 1.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482",
            "trust": 0.7
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "id": "VAR-200511-0162",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          }
        ],
        "trust": 0.01
      },
      "last_update_date": "2025-04-03T20:05:47.302000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 1.8,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 1.7,
            "url": "http://www.securityfocus.com/bid/15560"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17663"
          },
          {
            "trust": 1.5,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.1,
            "url": "http://www.vupen.com/english/advisories/2005/2566"
          },
          {
            "trust": 0.9,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.7,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2566"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-30T00:00:00",
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "date": "2005-11-30T11:03:00",
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2011-03-08T00:00:00",
            "db": "VULHUB",
            "id": "VHN-15123"
          },
          {
            "date": "2006-09-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          },
          {
            "date": "2025-04-03T01:03:51.193000",
            "db": "NVD",
            "id": "CVE-2005-3915"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-482"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200605-0040

    Vulnerability from variot - Updated: 2022-05-29 21:46

    The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200605-0040",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "internet key exchange",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "internet key exchange",
            "version": "1"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "NISCC uniras@niscc.gov.uk",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2006-2298",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2006-2298",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2006-2298",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200605-187",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked daemon crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.43
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "17902",
            "trust": 2.4
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298",
            "trust": 2.4
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "20050",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1016043",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-1733",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15523",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15401",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15474",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15420",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15479",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688",
            "trust": 0.8
          },
          {
            "db": "XF",
            "id": "26311",
            "trust": 0.6
          },
          {
            "db": "SUNALERT",
            "id": "102246",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "id": "VAR-200605-0040",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T21:46:33.327000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.4,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1016043"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/20050"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2006/1733"
          },
          {
            "trust": 1.0,
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26311"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-2298"
          },
          {
            "trust": 0.8,
            "url": "http://www.frsirt.com/english/advisories/2005/2470"
          },
          {
            "trust": 0.8,
            "url": "http://www.frsirt.com/english/advisories/2005/2406"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2006-2298"
          },
          {
            "trust": 0.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15523"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15479"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15474"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15420"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15401"
          },
          {
            "trust": 0.8,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/1733"
          },
          {
            "trust": 0.6,
            "url": "http://xforce.iss.net/xforce/xfdb/26311"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2006-05-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "date": "2006-05-10T10:02:00",
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000688"
          },
          {
            "date": "2006-05-10T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          },
          {
            "date": "2017-07-20T01:31:00",
            "db": "NVD",
            "id": "CVE-2006-2298"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200605-187"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0061

    Vulnerability from variot - Updated: 2022-05-29 21:11

    The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. IPsec-Tools is prone to a denial-of-service vulnerability. This issue is due to a failure in the application to handle exceptional conditions when in 'AGGRESSIVE' mode. An attacker can exploit this issue to crash the application, thus denying service to legitimate users. These vulnerabilities were discovered by, and may be reproduced by, the University of Oulu Secure Programming Group PROTOS IPSec Test Suite. --------------------------------------------------------------------- Fedora Legacy Update Advisory

    Synopsis: Updated ipsec-tools package fixes security issue Advisory ID: FLSA:190941 Issue date: 2006-06-06 Product: Fedora Core Keywords: Bugfix CVE Names: CVE-2005-3732



    1. Topic:

    An updated ipsec-tools package that fixes a bug in racoon is now available.

    The ipsec-tools package is used in conjunction with the IPsec functionality in the linux kernel and includes racoon, an IKEv1 keying daemon.

    1. Relevant releases/architectures:

    Fedora Core 2 - i386 Fedora Core 3 - i386, x86_64

    1. Problem description:

    A denial of service flaw was found in the ipsec-tools racoon daemon. If a victim's machine has racoon configured in a non-recommended insecure manner, it is possible for a remote attacker to crash the racoon daemon. (CVE-2005-3732)

    Users of ipsec-tools should upgrade to this updated package, which contains backported patches, and is not vulnerable to this issue.

    1. Solution:

    Before applying this update, make sure all previously released errata relevant to your system have been applied.

    To update all RPMs for your particular architecture, run:

    rpm -Fvh [filenames]

    where [filenames] is a list of the RPMs you wish to upgrade. Only those RPMs which are currently installed will be updated. Those RPMs which are not installed but included in the list will not be updated. Note that you can also use wildcards (.rpm) if your current directory only* contains the desired RPMs.

    Please note that this update is also available via yum and apt. Many people find this an easier way to apply updates. To use yum issue:

    yum update

    or to use apt:

    apt-get update; apt-get upgrade

    This will start an interactive process that will result in the appropriate RPMs being upgraded on your system. This assumes that you have yum or apt-get configured for obtaining Fedora Legacy content. Please visit http://www.fedoralegacy.org/docs for directions on how to configure yum and apt-get.

    1. Bug IDs fixed:

    https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190941

    1. RPMs required:

    Fedora Core 2:

    SRPM: http://download.fedoralegacy.org/fedora/2/updates/SRPMS/ipsec-tools-0.5-2.fc2.1.legacy.src.rpm

    i386: http://download.fedoralegacy.org/fedora/2/updates/i386/ipsec-tools-0.5-2.fc2.1.legacy.i386.rpm

    Fedora Core 3:

    SRPM: http://download.fedoralegacy.org/fedora/3/updates/SRPMS/ipsec-tools-0.5-2.fc3.1.legacy.src.rpm

    i386: http://download.fedoralegacy.org/fedora/3/updates/i386/ipsec-tools-0.5-2.fc3.1.legacy.i386.rpm

    x86_64: http://download.fedoralegacy.org/fedora/3/updates/x86_64/ipsec-tools-0.5-2.fc3.1.legacy.x86_64.rpm

    1. Verification:

    SHA1 sum Package Name

    fc2: e8f91c085fb9533106c6ebc442572bd0b22f2470 fedora/2/updates/i386/ipsec-tools-0.5-2.fc2.1.legacy.i386.rpm 292a0a1426bc75abf0b34a3c91279a40ea78aac2 fedora/2/updates/SRPMS/ipsec-tools-0.5-2.fc2.1.legacy.src.rpm

    fc3: e49b07bcc0e3dbe56401056b65b36133dabb4b6c fedora/3/updates/i386/ipsec-tools-0.5-2.fc3.1.legacy.i386.rpm 10eed18767204b88c2811115d889c0a372079ec2 fedora/3/updates/x86_64/ipsec-tools-0.5-2.fc3.1.legacy.x86_64.rpm 0832eb1da62b597bc32b26ce9e8429d7e67f43d2 fedora/3/updates/SRPMS/ipsec-tools-0.5-2.fc3.1.legacy.src.rpm

    These packages are GPG signed by Fedora Legacy for security. Our key is available from http://www.fedoralegacy.org/about/security.php

    You can verify each package with the following command:

    rpm --checksig -v <filename>
    

    If you only wish to verify that each package has not been corrupted or tampered with, examine only the sha1sum with the following command:

    sha1sum <filename>
    
    1. References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732

    1. Contact:

    The Fedora Legacy security contact is secnotice@fedoralegacy.org. More project details at http://www.fedoralegacy.org


    . - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - Gentoo Linux Security Advisory GLSA 200512-04


                                            http://security.gentoo.org/
    

    Severity: Normal Title: Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol implementation Date: December 12, 2005 Bugs: #112568, #113201 ID: 200512-04


    Synopsis

    Openswan and IPsec-Tools suffer from an implementation flaw which may allow a Denial of Service attack.

    Background

    Openswan is an implementation of IPsec for Linux. IPsec is widely used to secure exchange of packets at the IP layer and mostly used to implement Virtual Private Networks (VPNs).

    Affected packages

    -------------------------------------------------------------------
     Package                   /  Vulnerable  /             Unaffected
    -------------------------------------------------------------------
    

    1 net-misc/openswan < 2.4.4 >= 2.4.4 2 net-firewall/ipsec-tools < 0.6.3 >= 0.6.3 >= 0.6.2-r1 >= 0.4-r2 ------------------------------------------------------------------- 2 affected packages on all of their supported architectures. -------------------------------------------------------------------

    Description

    The Oulu University Secure Programming Group (OUSPG) discovered that various ISAKMP implementations, including Openswan and racoon (included in the IPsec-Tools package), behave in an anomalous way when they receive and handle ISAKMP Phase 1 packets with invalid or abnormal contents.

    Workaround

    Avoid using "aggressive mode" in ISAKMP Phase 1, which exchanges information between the sides before there is a secure channel.

    Resolution

    All Openswan users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose ">=net-misc/openswan-2.4.4"
    

    All IPsec-Tools users should upgrade to the latest version:

    # emerge --sync
    # emerge --ask --oneshot --verbose net-firewall/ipsec-tools
    

    References

    [ 1 ] CVE-2005-3671 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3671 [ 2 ] CVE-2005-3732 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732 [ 3 ] Original Advisory http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/

    Availability

    This GLSA and any updates to it are available for viewing at the Gentoo Security Website:

    http://security.gentoo.org/glsa/glsa-200512-04.xml

    Concerns?

    Security is a primary focus of Gentoo Linux and ensuring the confidentiality and security of our users machines is of utmost importance to us. Any security concerns should be addressed to security@gentoo.org or alternatively, you may file a bug at http://bugs.gentoo.org.

    License

    Copyright 2005 Gentoo Foundation, Inc; referenced text belongs to its owner(s).

    The contents of this document are licensed under the Creative Commons - Attribution / Share Alike license.

    http://creativecommons.org/licenses/by-sa/2.0

    .

    TITLE: Nortel Switched Firewall ISAKMP IKE Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17608

    VERIFY ADVISORY: http://secunia.com/advisories/17608/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Nortel Switched Firewall 5000 Series http://secunia.com/product/6126/ Nortel Switched Firewall 5100 Series http://secunia.com/product/6125/ Nortel Switched Firewall 6000 Series http://secunia.com/product/6124/

    DESCRIPTION: A vulnerability has been reported in Nortel Switched Firewall, which potentially can be exploited by malicious people to cause a DoS (Denial of Service).

    The vulnerability is caused due to unspecified errors in the processing of IKEv1 Phase 1 protocol exchange messages. This may be exploited to cause a DoS via specially crafted IKE packets.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    ORIGINAL ADVISORY: Nortel Networks: http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL&DocumentOID=367651&RenditionID=

    NISCC: http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    .

    The updated packages have been patched to correct this problem.


    References:

    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732


    Updated Packages:

    Mandriva Linux 10.1: c1f74be6f3c46152881ded66022a3928 10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.i586.rpm c8416853386be9e80b5f8ac6de16cf93 10.1/RPMS/libipsec-tools0-0.2.5-2.2.101mdk.i586.rpm 278751ee3fca05321059c67f39f1a0f0 10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm

    Mandriva Linux 10.1/X86_64: 5d3d19d02d0d5a8eb5fcc237768fb07f x86_64/10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.x86_64.rpm 464dadc90a736f6312a6c143c12a4cce x86_64/10.1/RPMS/lib64ipsec-tools0-0.2.5-2.2.101mdk.x86_64.rpm 278751ee3fca05321059c67f39f1a0f0 x86_64/10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm

    Mandriva Linux 10.2: 75b061a206ba4a943904d384e489036c 10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.i586.rpm 3c17715ce5bd1e63347e844bca518fa3 10.2/RPMS/libipsec0-0.5-4.2.102mdk.i586.rpm c221e9fbca14cc956df812605aa67b96 10.2/RPMS/libipsec0-devel-0.5-4.2.102mdk.i586.rpm 313ae7a9fd1eceb117515c61f19f0a2a 10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm

    Mandriva Linux 10.2/X86_64: 2de25a175eff7fbb77758993965110a5 x86_64/10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.x86_64.rpm ff5095c574441578b6e6e1c9384bf05c x86_64/10.2/RPMS/lib64ipsec0-0.5-4.2.102mdk.x86_64.rpm db6e3f33dc2326528a4c22e199e2c0fa x86_64/10.2/RPMS/lib64ipsec0-devel-0.5-4.2.102mdk.x86_64.rpm 313ae7a9fd1eceb117515c61f19f0a2a x86_64/10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm

    Mandriva Linux 2006.0: a3881692a4ee81a3e4759500691ba86d 2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.i586.rpm 4523963e017054a149cc9c6c46e6fa39 2006.0/RPMS/libipsec0-0.5.2-5.1.20060mdk.i586.rpm 9208a98bc79efce31e8bf08c5a409431 2006.0/RPMS/libipsec0-devel-0.5.2-5.1.20060mdk.i586.rpm 390a8547034610a0ebd6a30f8752c36d 2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm

    Mandriva Linux 2006.0/X86_64: 89c02c5eebb80544fb54cf8876183d92 x86_64/2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.x86_64.rpm 833ab780f0ef3eb86da1c2aa82746c72 x86_64/2006.0/RPMS/lib64ipsec0-0.5.2-5.1.20060mdk.x86_64.rpm d875aeb7f90b36eba89ff2e2b901a3cc x86_64/2006.0/RPMS/lib64ipsec0-devel-0.5.2-5.1.20060mdk.x86_64.rpm 390a8547034610a0ebd6a30f8752c36d x86_64/2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm

    Multi Network Firewall 2.0: 3a441d674beb304f607975502cb2f302 mnf/2.0/RPMS/ipsec-tools-0.2.5-0.4.M20mdk.i586.rpm 109a0184382426bd065df6000f64189d mnf/2.0/RPMS/libipsec-tools0-0.2.5-0.4.M20mdk.i586.rpm 96dacbdb35121f2f876d1bb19cb00c24 mnf/2.0/SRPMS/ipsec-tools-0.2.5-0.4.M20mdk.src.rpm


    To upgrade automatically use MandrivaUpdate or urpmi. The verification of md5 checksums and GPG signatures is performed automatically for you. You can obtain the GPG public key of the Mandriva Security Team by executing:

    gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98

    You can view other update advisories for Mandriva Linux at:

    http://www.mandriva.com/security/advisories

    If you want to report vulnerabilities, please contact

    security_(at)_mandriva.com


    Type Bits/KeyID Date User ID pub 1024D/22458A98 2000-07-10 Mandriva Security Team -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.4 (GNU/Linux)

    iD8DBQFD19iemqjQ0CJFipgRAp9rAKC7w5Jflg/c/KBy6kdNDiGF8YbgWQCeIbM4 LUncx0ejSC2hQ5/zFlDZKjg= =qhPu -----END PGP SIGNATURE-----

    . =========================================================== Ubuntu Security Notice USN-221-1 December 01, 2005 ipsec-tools vulnerability CVE-2005-3732 ===========================================================

    A security issue affects the following Ubuntu releases:

    Ubuntu 4.10 (Warty Warthog) Ubuntu 5.04 (Hoary Hedgehog) Ubuntu 5.10 (Breezy Badger)

    The following packages are affected:

    racoon

    The problem can be corrected by upgrading the affected package to version 0.3.3-1ubuntu0.2 (for Ubuntu 4.10), 1:0.5-5ubuntu0.1 (for Ubuntu 5.04), or 1:0.6-1ubuntu1.1 (for Ubuntu 5.10). In general, a standard system upgrade is sufficient to effect the necessary changes. When the daemon is configured to use aggressive mode, then it did not check whether the peer sent all required payloads during the IKE negotiation phase. A malicious IPsec peer could exploit this to crash the racoon daemon.

    Please be aware that racoon is not officially supported by Ubuntu, the package is in the 'universe' component of the archive.

    Updated packages for Ubuntu 4.10:

    Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.diff.gz
      Size/MD5:   191462 3f68d0eb625f920ef3ab5e4e1a2b942f
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.dsc
      Size/MD5:      705 8c92ea1c2b68e7e335892c10020bafc2
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3.orig.tar.gz
      Size/MD5:   864122 b141da8ae299c8fdc53e536f6bbc3ad0
    

    amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_amd64.deb
      Size/MD5:   106260 491ea714d329c5b0d6b8283c7579140f
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_amd64.deb
      Size/MD5:   201510 7c3c1d31969a6924bfe0afbf6f56b468
    

    i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_i386.deb
      Size/MD5:   101224 5e35a5bfca069cf88d0d349ad86b3cf8
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_i386.deb
      Size/MD5:   186400 0627a043d0f0ad1e05830d57c35666f2
    

    powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_powerpc.deb
      Size/MD5:   108966 67f208c020df5f1194ab71a0569004f2
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_powerpc.deb
      Size/MD5:   196078 2acd7c40b8a56db688fc8ac8484272da
    

    Updated packages for Ubuntu 5.04:

    Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.diff.gz
      Size/MD5:    41200 47ee31ab5776589dd049a90f0437865b
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.dsc
      Size/MD5:      660 cad8e0faad2316aa0a65e28880548f58
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5.orig.tar.gz
      Size/MD5:   883484 57de611b23eb141173698478e9b64474
    

    amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_amd64.deb
      Size/MD5:    80430 47b366f44e0c8fb49ea43500161a6419
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_amd64.deb
      Size/MD5:   301450 9fd3f818fc41641ed0e691f69b23c441
    

    i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_i386.deb
      Size/MD5:    75606 390fe7eb94e2e519bef1a0df6b6d46b5
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_i386.deb
      Size/MD5:   276974 baef582ea75ecaf240298d2917b79fac
    

    powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_powerpc.deb
      Size/MD5:    83030 7880cae89438386a5b9f676760eff1be
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_powerpc.deb
      Size/MD5:   296838 f417446dce53652608242e1798663622
    

    Updated packages for Ubuntu 5.10:

    Source archives:

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.diff.gz
      Size/MD5:    49677 79084ce144e4b54267f69876d8104387
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.dsc
      Size/MD5:      685 c22deb12d9a0943e3a66aad1a83c3857
    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6.orig.tar.gz
      Size/MD5:   905983 2cd85d36012b4d2c6947f7c17ad45b3e
    

    amd64 architecture (Athlon64, Opteron, EM64T Xeon)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_amd64.deb
      Size/MD5:    85086 e894b1b0168138fdb46d0c55095252bf
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_amd64.deb
      Size/MD5:   326258 1e7da4aa300a082cdf8034639de4f0a0
    

    i386 architecture (x86 compatible Intel/AMD)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_i386.deb
      Size/MD5:    78912 b46dd5373458dd5500b2513edc6ceec8
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_i386.deb
      Size/MD5:   298016 5df2e64e0ac064876aa21d29c086f902
    

    powerpc architecture (Apple Macintosh G3/G4/G5)

    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_powerpc.deb
      Size/MD5:    86902 c7c905f335db1bae382af11fe659d335
    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_powerpc.deb
      Size/MD5:   319518 1a7abc7fd9645d47d045f63d9f980528
    

    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0061",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.6.2"
          },
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.6.1"
          },
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.6"
          },
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.5.2"
          },
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.5.1"
          },
          {
            "model": "ipsec-tools",
            "scope": "eq",
            "trust": 1.9,
            "vendor": "ipsec tools",
            "version": "0.5"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.10"
          },
          {
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.10"
          },
          {
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.10"
          },
          {
            "model": "linux powerpc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.04"
          },
          {
            "model": "linux i386",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.04"
          },
          {
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "5.04"
          },
          {
            "model": "linux ppc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "4.1"
          },
          {
            "model": "linux ia64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "4.1"
          },
          {
            "model": "linux ia32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "ubuntu",
            "version": "4.1"
          },
          {
            "model": "linux enterprise server",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "suse",
            "version": "9"
          },
          {
            "model": "propack sp6",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sgi",
            "version": "3.0"
          },
          {
            "model": "linux professional oss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "10.0"
          },
          {
            "model": "linux professional x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.3"
          },
          {
            "model": "linux professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.3"
          },
          {
            "model": "linux professional x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.2"
          },
          {
            "model": "linux professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.2"
          },
          {
            "model": "linux professional x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.1"
          },
          {
            "model": "linux professional",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.1"
          },
          {
            "model": "linux personal oss",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "10.0"
          },
          {
            "model": "linux personal x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.3"
          },
          {
            "model": "linux personal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.3"
          },
          {
            "model": "linux personal x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.2"
          },
          {
            "model": "linux personal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.2"
          },
          {
            "model": "linux personal x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.1"
          },
          {
            "model": "linux personal",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "s u s e",
            "version": "9.1"
          },
          {
            "model": "fedora core3",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "model": "fedora core2",
            "scope": null,
            "trust": 0.3,
            "vendor": "redhat",
            "version": null
          },
          {
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "model": "enterprise linux ws",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "model": "enterprise linux es",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4"
          },
          {
            "model": "enterprise linux as",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3"
          },
          {
            "model": "desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "4.0"
          },
          {
            "model": "desktop",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "redhat",
            "version": "3.0"
          },
          {
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2006.0"
          },
          {
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "2006.0"
          },
          {
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "10.2"
          },
          {
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "10.2"
          },
          {
            "model": "linux mandrake x86 64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "10.1"
          },
          {
            "model": "linux mandrake",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandriva",
            "version": "10.1"
          },
          {
            "model": "multi network firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "mandrakesoft",
            "version": "2.0"
          },
          {
            "model": "linux",
            "scope": null,
            "trust": 0.3,
            "vendor": "gentoo",
            "version": null
          },
          {
            "model": "linux sparc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux s/390",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux ppc",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux mipsel",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux mips",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux m68k",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux ia-64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux ia-32",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux hppa",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux arm",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux amd64",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux alpha",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "linux",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "debian",
            "version": "3.1"
          },
          {
            "model": "ipsec-tools",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "ipsec tools",
            "version": "0.6.3"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.6.2:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:a:ipsec-tools:ipsec-tools:0.5.1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-3732",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3732",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3732",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-313",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. IPsec-Tools is prone to a denial-of-service vulnerability. This issue is due to a failure in the application to handle exceptional conditions when in \u0027AGGRESSIVE\u0027 mode. \nAn attacker can exploit this issue to crash the application, thus denying service to legitimate users. \nThese vulnerabilities were discovered by, and may be reproduced by, the University of Oulu Secure Programming Group PROTOS IPSec Test Suite. ---------------------------------------------------------------------\n               Fedora Legacy Update Advisory\n\nSynopsis:          Updated ipsec-tools package fixes security issue\nAdvisory ID:       FLSA:190941\nIssue date:        2006-06-06\nProduct:           Fedora Core\nKeywords:          Bugfix\nCVE Names:         CVE-2005-3732\n---------------------------------------------------------------------\n\n\n---------------------------------------------------------------------\n1. Topic:\n\nAn updated ipsec-tools package that fixes a bug in racoon is now\navailable. \n\nThe ipsec-tools package is used in conjunction with the IPsec\nfunctionality in the linux kernel and includes racoon, an IKEv1 keying\ndaemon. \n\n2. Relevant releases/architectures:\n\nFedora Core 2 - i386\nFedora Core 3 - i386, x86_64\n\n3. Problem description:\n\nA denial of service flaw was found in the ipsec-tools racoon daemon. If\na victim\u0027s machine has racoon configured in a non-recommended insecure\nmanner, it is possible for a remote attacker to crash the racoon daemon. \n(CVE-2005-3732)\n\nUsers of ipsec-tools should upgrade to this updated package, which\ncontains backported patches, and is not vulnerable to this issue. \n\n4. Solution:\n\nBefore applying this update, make sure all previously released errata\nrelevant to your system have been applied. \n\nTo update all RPMs for your particular architecture, run:\n\nrpm -Fvh [filenames]\n\nwhere [filenames] is a list of the RPMs you wish to upgrade.  Only those\nRPMs which are currently installed will be updated.  Those RPMs which\nare not installed but included in the list will not be updated.  Note\nthat you can also use wildcards (*.rpm) if your current directory *only*\ncontains the desired RPMs. \n\nPlease note that this update is also available via yum and apt.  Many\npeople find this an easier way to apply updates.  To use yum issue:\n\nyum update\n\nor to use apt:\n\napt-get update; apt-get upgrade\n\nThis will start an interactive process that will result in the\nappropriate RPMs being upgraded on your system.  This assumes that you\nhave yum or apt-get configured for obtaining Fedora Legacy content. \nPlease visit http://www.fedoralegacy.org/docs for directions on how to\nconfigure yum and apt-get. \n\n5. Bug IDs fixed:\n\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190941\n\n6. RPMs required:\n\nFedora Core 2:\n\nSRPM:\nhttp://download.fedoralegacy.org/fedora/2/updates/SRPMS/ipsec-tools-0.5-2.fc2.1.legacy.src.rpm\n\ni386:\nhttp://download.fedoralegacy.org/fedora/2/updates/i386/ipsec-tools-0.5-2.fc2.1.legacy.i386.rpm\n\nFedora Core 3:\n\nSRPM:\nhttp://download.fedoralegacy.org/fedora/3/updates/SRPMS/ipsec-tools-0.5-2.fc3.1.legacy.src.rpm\n\ni386:\nhttp://download.fedoralegacy.org/fedora/3/updates/i386/ipsec-tools-0.5-2.fc3.1.legacy.i386.rpm\n\nx86_64:\nhttp://download.fedoralegacy.org/fedora/3/updates/x86_64/ipsec-tools-0.5-2.fc3.1.legacy.x86_64.rpm\n\n7. Verification:\n\nSHA1 sum                                  Package Name\n---------------------------------------------------------------------\n\nfc2:\ne8f91c085fb9533106c6ebc442572bd0b22f2470\nfedora/2/updates/i386/ipsec-tools-0.5-2.fc2.1.legacy.i386.rpm\n292a0a1426bc75abf0b34a3c91279a40ea78aac2\nfedora/2/updates/SRPMS/ipsec-tools-0.5-2.fc2.1.legacy.src.rpm\n\nfc3:\ne49b07bcc0e3dbe56401056b65b36133dabb4b6c\nfedora/3/updates/i386/ipsec-tools-0.5-2.fc3.1.legacy.i386.rpm\n10eed18767204b88c2811115d889c0a372079ec2\nfedora/3/updates/x86_64/ipsec-tools-0.5-2.fc3.1.legacy.x86_64.rpm\n0832eb1da62b597bc32b26ce9e8429d7e67f43d2\nfedora/3/updates/SRPMS/ipsec-tools-0.5-2.fc3.1.legacy.src.rpm\n\n\nThese packages are GPG signed by Fedora Legacy for security.  Our key is\navailable from http://www.fedoralegacy.org/about/security.php\n\nYou can verify each package with the following command:\n\n    rpm --checksig -v \u003cfilename\u003e\n\nIf you only wish to verify that each package has not been corrupted or\ntampered with, examine only the sha1sum with the following command:\n\n    sha1sum \u003cfilename\u003e\n\n8. References:\n\nhttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732\n\n9. Contact:\n\nThe Fedora Legacy security contact is \u003csecnotice@fedoralegacy.org\u003e. More\nproject details at http://www.fedoralegacy.org\n\n---------------------------------------------------------------------\n\n. - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\nGentoo Linux Security Advisory                           GLSA 200512-04\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n                                            http://security.gentoo.org/\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\n  Severity: Normal\n     Title: Openswan, IPsec-Tools: Vulnerabilities in ISAKMP Protocol\n            implementation\n      Date: December 12, 2005\n      Bugs: #112568, #113201\n        ID: 200512-04\n\n- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -\n\nSynopsis\n========\n\nOpenswan and IPsec-Tools suffer from an implementation flaw which may\nallow a Denial of Service attack. \n\nBackground\n==========\n\nOpenswan is an implementation of IPsec for Linux. IPsec is widely\nused to secure exchange of packets at the IP layer and mostly used to\nimplement Virtual Private Networks (VPNs). \n\nAffected packages\n=================\n\n    -------------------------------------------------------------------\n     Package                   /  Vulnerable  /             Unaffected\n    -------------------------------------------------------------------\n  1  net-misc/openswan              \u003c 2.4.4                   \u003e= 2.4.4\n  2  net-firewall/ipsec-tools       \u003c 0.6.3                   \u003e= 0.6.3\n                                                          *\u003e= 0.6.2-r1\n                                                            *\u003e= 0.4-r2\n    -------------------------------------------------------------------\n     2 affected packages on all of their supported architectures. \n    -------------------------------------------------------------------\n\nDescription\n===========\n\nThe Oulu University Secure Programming Group (OUSPG) discovered that\nvarious ISAKMP implementations, including Openswan and racoon (included\nin the IPsec-Tools package), behave in an anomalous way when they\nreceive and handle ISAKMP Phase 1 packets with invalid or abnormal\ncontents. \n\nWorkaround\n==========\n\nAvoid using \"aggressive mode\" in ISAKMP Phase 1, which exchanges\ninformation between the sides before there is a secure channel. \n\nResolution\n==========\n\nAll Openswan users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose \"\u003e=net-misc/openswan-2.4.4\"\n\nAll IPsec-Tools users should upgrade to the latest version:\n\n    # emerge --sync\n    # emerge --ask --oneshot --verbose net-firewall/ipsec-tools\n\nReferences\n==========\n\n  [ 1 ] CVE-2005-3671\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3671\n  [ 2 ] CVE-2005-3732\n        http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732\n  [ 3 ] Original Advisory\n        http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/\n\nAvailability\n============\n\nThis GLSA and any updates to it are available for viewing at\nthe Gentoo Security Website:\n\n  http://security.gentoo.org/glsa/glsa-200512-04.xml\n\nConcerns?\n=========\n\nSecurity is a primary focus of Gentoo Linux and ensuring the\nconfidentiality and security of our users machines is of utmost\nimportance to us. Any security concerns should be addressed to\nsecurity@gentoo.org or alternatively, you may file a bug at\nhttp://bugs.gentoo.org. \n\nLicense\n=======\n\nCopyright 2005 Gentoo Foundation, Inc; referenced text\nbelongs to its owner(s). \n\nThe contents of this document are licensed under the\nCreative Commons - Attribution / Share Alike license. \n\nhttp://creativecommons.org/licenses/by-sa/2.0\n\n. \n\nTITLE:\nNortel Switched Firewall ISAKMP IKE Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17608\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17608/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nNortel Switched Firewall 5000 Series\nhttp://secunia.com/product/6126/\nNortel Switched Firewall 5100 Series\nhttp://secunia.com/product/6125/\nNortel Switched Firewall 6000 Series\nhttp://secunia.com/product/6124/\n\nDESCRIPTION:\nA vulnerability has been reported in Nortel Switched Firewall, which\npotentially can be exploited by malicious people to cause a DoS\n(Denial of Service). \r\n\r\nThe vulnerability is caused due to unspecified errors in the\nprocessing of IKEv1 Phase 1 protocol exchange messages. This may be\nexploited to cause a DoS via specially crafted IKE packets. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nORIGINAL ADVISORY:\nNortel Networks:\r\nhttp://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=BLTNDETAIL\u0026DocumentOID=367651\u0026RenditionID=\r\n\r\nNISCC:\r\nhttp://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en\n\nOTHER REFERENCES:\nSA17553:\r\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n \n The updated packages have been patched to correct this problem. \n _______________________________________________________________________\n\n References:\n \n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3732\n _______________________________________________________________________\n \n Updated Packages:\n \n Mandriva Linux 10.1:\n c1f74be6f3c46152881ded66022a3928  10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.i586.rpm\n c8416853386be9e80b5f8ac6de16cf93  10.1/RPMS/libipsec-tools0-0.2.5-2.2.101mdk.i586.rpm\n 278751ee3fca05321059c67f39f1a0f0  10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm\n\n Mandriva Linux 10.1/X86_64:\n 5d3d19d02d0d5a8eb5fcc237768fb07f  x86_64/10.1/RPMS/ipsec-tools-0.2.5-2.2.101mdk.x86_64.rpm\n 464dadc90a736f6312a6c143c12a4cce  x86_64/10.1/RPMS/lib64ipsec-tools0-0.2.5-2.2.101mdk.x86_64.rpm\n 278751ee3fca05321059c67f39f1a0f0  x86_64/10.1/SRPMS/ipsec-tools-0.2.5-2.2.101mdk.src.rpm\n\n Mandriva Linux 10.2:\n 75b061a206ba4a943904d384e489036c  10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.i586.rpm\n 3c17715ce5bd1e63347e844bca518fa3  10.2/RPMS/libipsec0-0.5-4.2.102mdk.i586.rpm\n c221e9fbca14cc956df812605aa67b96  10.2/RPMS/libipsec0-devel-0.5-4.2.102mdk.i586.rpm\n 313ae7a9fd1eceb117515c61f19f0a2a  10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm\n\n Mandriva Linux 10.2/X86_64:\n 2de25a175eff7fbb77758993965110a5  x86_64/10.2/RPMS/ipsec-tools-0.5-4.2.102mdk.x86_64.rpm\n ff5095c574441578b6e6e1c9384bf05c  x86_64/10.2/RPMS/lib64ipsec0-0.5-4.2.102mdk.x86_64.rpm\n db6e3f33dc2326528a4c22e199e2c0fa  x86_64/10.2/RPMS/lib64ipsec0-devel-0.5-4.2.102mdk.x86_64.rpm\n 313ae7a9fd1eceb117515c61f19f0a2a  x86_64/10.2/SRPMS/ipsec-tools-0.5-4.2.102mdk.src.rpm\n\n Mandriva Linux 2006.0:\n a3881692a4ee81a3e4759500691ba86d  2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.i586.rpm\n 4523963e017054a149cc9c6c46e6fa39  2006.0/RPMS/libipsec0-0.5.2-5.1.20060mdk.i586.rpm\n 9208a98bc79efce31e8bf08c5a409431  2006.0/RPMS/libipsec0-devel-0.5.2-5.1.20060mdk.i586.rpm\n 390a8547034610a0ebd6a30f8752c36d  2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm\n\n Mandriva Linux 2006.0/X86_64:\n 89c02c5eebb80544fb54cf8876183d92  x86_64/2006.0/RPMS/ipsec-tools-0.5.2-5.1.20060mdk.x86_64.rpm\n 833ab780f0ef3eb86da1c2aa82746c72  x86_64/2006.0/RPMS/lib64ipsec0-0.5.2-5.1.20060mdk.x86_64.rpm\n d875aeb7f90b36eba89ff2e2b901a3cc  x86_64/2006.0/RPMS/lib64ipsec0-devel-0.5.2-5.1.20060mdk.x86_64.rpm\n 390a8547034610a0ebd6a30f8752c36d  x86_64/2006.0/SRPMS/ipsec-tools-0.5.2-5.1.20060mdk.src.rpm\n\n Multi Network Firewall 2.0:\n 3a441d674beb304f607975502cb2f302  mnf/2.0/RPMS/ipsec-tools-0.2.5-0.4.M20mdk.i586.rpm\n 109a0184382426bd065df6000f64189d  mnf/2.0/RPMS/libipsec-tools0-0.2.5-0.4.M20mdk.i586.rpm\n 96dacbdb35121f2f876d1bb19cb00c24  mnf/2.0/SRPMS/ipsec-tools-0.2.5-0.4.M20mdk.src.rpm\n _______________________________________________________________________\n\n To upgrade automatically use MandrivaUpdate or urpmi.  The verification\n of md5 checksums and GPG signatures is performed automatically for you.  You can obtain the\n GPG public key of the Mandriva Security Team by executing:\n\n  gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\n\n You can view other update advisories for Mandriva Linux at:\n\n  http://www.mandriva.com/security/advisories\n\n If you want to report vulnerabilities, please contact\n\n  security_(at)_mandriva.com\n _______________________________________________________________________\n\n Type Bits/KeyID     Date       User ID\n pub  1024D/22458A98 2000-07-10 Mandriva Security Team\n  \u003csecurity*mandriva.com\u003e\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.4 (GNU/Linux)\n\niD8DBQFD19iemqjQ0CJFipgRAp9rAKC7w5Jflg/c/KBy6kdNDiGF8YbgWQCeIbM4\nLUncx0ejSC2hQ5/zFlDZKjg=\n=qhPu\n-----END PGP SIGNATURE-----\n\n. ===========================================================\nUbuntu Security Notice USN-221-1\t  December 01, 2005\nipsec-tools vulnerability\nCVE-2005-3732\n===========================================================\n\nA security issue affects the following Ubuntu releases:\n\nUbuntu 4.10 (Warty Warthog)\nUbuntu 5.04 (Hoary Hedgehog)\nUbuntu 5.10 (Breezy Badger)\n\nThe following packages are affected:\n\nracoon\n\nThe problem can be corrected by upgrading the affected package to\nversion 0.3.3-1ubuntu0.2 (for Ubuntu 4.10), 1:0.5-5ubuntu0.1 (for\nUbuntu 5.04), or 1:0.6-1ubuntu1.1 (for Ubuntu 5.10).  In general, a\nstandard system upgrade is sufficient to effect the necessary changes. When the daemon\nis configured to use aggressive mode, then it did not check whether\nthe peer sent all required payloads during the IKE negotiation phase. \nA malicious IPsec peer could exploit this to crash the racoon daemon. \n\nPlease be aware that racoon is not officially supported by Ubuntu, the\npackage is in the \u0027universe\u0027 component of the archive. \n\nUpdated packages for Ubuntu 4.10:\n\n  Source archives:\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.diff.gz\n      Size/MD5:   191462 3f68d0eb625f920ef3ab5e4e1a2b942f\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.dsc\n      Size/MD5:      705 8c92ea1c2b68e7e335892c10020bafc2\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3.orig.tar.gz\n      Size/MD5:   864122 b141da8ae299c8fdc53e536f6bbc3ad0\n\n  amd64 architecture (Athlon64, Opteron, EM64T Xeon)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_amd64.deb\n      Size/MD5:   106260 491ea714d329c5b0d6b8283c7579140f\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_amd64.deb\n      Size/MD5:   201510 7c3c1d31969a6924bfe0afbf6f56b468\n\n  i386 architecture (x86 compatible Intel/AMD)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_i386.deb\n      Size/MD5:   101224 5e35a5bfca069cf88d0d349ad86b3cf8\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_i386.deb\n      Size/MD5:   186400 0627a043d0f0ad1e05830d57c35666f2\n\n  powerpc architecture (Apple Macintosh G3/G4/G5)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_powerpc.deb\n      Size/MD5:   108966 67f208c020df5f1194ab71a0569004f2\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_powerpc.deb\n      Size/MD5:   196078 2acd7c40b8a56db688fc8ac8484272da\n\nUpdated packages for Ubuntu 5.04:\n\n  Source archives:\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.diff.gz\n      Size/MD5:    41200 47ee31ab5776589dd049a90f0437865b\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.dsc\n      Size/MD5:      660 cad8e0faad2316aa0a65e28880548f58\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5.orig.tar.gz\n      Size/MD5:   883484 57de611b23eb141173698478e9b64474\n\n  amd64 architecture (Athlon64, Opteron, EM64T Xeon)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_amd64.deb\n      Size/MD5:    80430 47b366f44e0c8fb49ea43500161a6419\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_amd64.deb\n      Size/MD5:   301450 9fd3f818fc41641ed0e691f69b23c441\n\n  i386 architecture (x86 compatible Intel/AMD)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_i386.deb\n      Size/MD5:    75606 390fe7eb94e2e519bef1a0df6b6d46b5\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_i386.deb\n      Size/MD5:   276974 baef582ea75ecaf240298d2917b79fac\n\n  powerpc architecture (Apple Macintosh G3/G4/G5)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_powerpc.deb\n      Size/MD5:    83030 7880cae89438386a5b9f676760eff1be\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_powerpc.deb\n      Size/MD5:   296838 f417446dce53652608242e1798663622\n\nUpdated packages for Ubuntu 5.10:\n\n  Source archives:\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.diff.gz\n      Size/MD5:    49677 79084ce144e4b54267f69876d8104387\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.dsc\n      Size/MD5:      685 c22deb12d9a0943e3a66aad1a83c3857\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6.orig.tar.gz\n      Size/MD5:   905983 2cd85d36012b4d2c6947f7c17ad45b3e\n\n  amd64 architecture (Athlon64, Opteron, EM64T Xeon)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_amd64.deb\n      Size/MD5:    85086 e894b1b0168138fdb46d0c55095252bf\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_amd64.deb\n      Size/MD5:   326258 1e7da4aa300a082cdf8034639de4f0a0\n\n  i386 architecture (x86 compatible Intel/AMD)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_i386.deb\n      Size/MD5:    78912 b46dd5373458dd5500b2513edc6ceec8\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_i386.deb\n      Size/MD5:   298016 5df2e64e0ac064876aa21d29c086f902\n\n  powerpc architecture (Apple Macintosh G3/G4/G5)\n\n    http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_powerpc.deb\n      Size/MD5:    86902 c7c905f335db1bae382af11fe659d335\n    http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_powerpc.deb\n      Size/MD5:   319518 1a7abc7fd9645d47d045f63d9f980528\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "PACKETSTORM",
            "id": "47207"
          },
          {
            "db": "PACKETSTORM",
            "id": "42278"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "db": "PACKETSTORM",
            "id": "42029"
          }
        ],
        "trust": 3.06
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2005-3732",
            "trust": 3.1
          },
          {
            "db": "BID",
            "id": "15523",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 2.4
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 1.6
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "20210",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17822",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17980",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "18616",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "18742",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "18115",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "19833",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2521",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1015254",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15401",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15474",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15420",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "15479",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685",
            "trust": 0.8
          },
          {
            "db": "DEBIAN",
            "id": "DSA-965",
            "trust": 0.6
          },
          {
            "db": "SGI",
            "id": "20060501-01-U",
            "trust": 0.6
          },
          {
            "db": "GENTOO",
            "id": "GLSA-200512-04",
            "trust": 0.6
          },
          {
            "db": "FEDORA",
            "id": "FLSA-2006:190941",
            "trust": 0.6
          },
          {
            "db": "MANDRIVA",
            "id": "MDKSA-2006:020",
            "trust": 0.6
          },
          {
            "db": "REDHAT",
            "id": "RHSA-2006:0267",
            "trust": 0.6
          },
          {
            "db": "SUSE",
            "id": "SUSE-SA:2005:070",
            "trust": 0.6
          },
          {
            "db": "BUGTRAQ",
            "id": "20051214 RE: [ GLSA 200512-04 ] OPENSWAN, IPSEC-TOOLS: VULNERABILITIES IN ISAK MP PROTOCOL IMPLEMENTATION",
            "trust": 0.6
          },
          {
            "db": "MLIST",
            "id": "[IPSEC-TOOLS-DEVEL] 20051120 POTENTIAL DOS FIXED IN IPSEC-TOOLS",
            "trust": 0.6
          },
          {
            "db": "UBUNTU",
            "id": "USN-221-1",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "47207",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "42278",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "43428",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "42029",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "PACKETSTORM",
            "id": "47207"
          },
          {
            "db": "PACKETSTORM",
            "id": "42278"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "db": "PACKETSTORM",
            "id": "42029"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "id": "VAR-200511-0061",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T21:11:57.981000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "CWE-399",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/15523"
          },
          {
            "trust": 2.2,
            "url": "http://cvs.sourceforge.net/viewcvs.py/ipsec-tools/ipsec-tools/src/racoon/isakmp_agg.c?r1=1.20.2.3\u0026r2=1.20.2.4\u0026diff_format=u"
          },
          {
            "trust": 1.9,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 1.9,
            "url": "http://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.7,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17668"
          },
          {
            "trust": 1.6,
            "url": "http://www.novell.com/linux/security/advisories/2005_70_ipsec.html"
          },
          {
            "trust": 1.6,
            "url": "http://www.mandriva.com/security/advisories?name=mdksa-2006:020"
          },
          {
            "trust": 1.6,
            "url": "http://www.gentoo.org/security/en/glsa/glsa-200512-04.xml"
          },
          {
            "trust": 1.6,
            "url": "http://www.debian.org/security/2006/dsa-965"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1015254"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/20210"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/19833"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18742"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18616"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18115"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17980"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17822"
          },
          {
            "trust": 1.6,
            "url": "http://archives.neohapsis.com/archives/bugtraq/2005-12/0161.html"
          },
          {
            "trust": 1.6,
            "url": "ftp://patches.sgi.com/support/free/security/advisories/20060501-01-u.asc"
          },
          {
            "trust": 1.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3732"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/2521"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a9857"
          },
          {
            "trust": 1.0,
            "url": "https://usn.ubuntu.com/221-1/"
          },
          {
            "trust": 1.0,
            "url": "http://www.securityfocus.com/archive/1/436343/100/0/threaded"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.frsirt.com/english/advisories/2005/2470"
          },
          {
            "trust": 0.8,
            "url": "http://www.frsirt.com/english/advisories/2005/2406"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3732"
          },
          {
            "trust": 0.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15479"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15474"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15420"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/15401"
          },
          {
            "trust": 0.8,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2521"
          },
          {
            "trust": 0.6,
            "url": "http://www.ubuntulinux.org/support/documentation/usn/usn-221-1"
          },
          {
            "trust": 0.6,
            "url": "http://www.securityfocus.com/archive/1/archive/1/436343/100/0/threaded"
          },
          {
            "trust": 0.6,
            "url": "http://frontal2.mandriva.com/security/advisories?name=mdksa-2006:020"
          },
          {
            "trust": 0.3,
            "url": "http://www.us.debian.org/security/2006/dsa-965"
          },
          {
            "trust": 0.3,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.3,
            "url": "http://ipsec-tools.sourceforge.net/"
          },
          {
            "trust": 0.1,
            "url": "http://download.fedoralegacy.org/fedora/2/updates/i386/ipsec-tools-0.5-2.fc2.1.legacy.i386.rpm"
          },
          {
            "trust": 0.1,
            "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190941"
          },
          {
            "trust": 0.1,
            "url": "http://download.fedoralegacy.org/fedora/3/updates/i386/ipsec-tools-0.5-2.fc3.1.legacy.i386.rpm"
          },
          {
            "trust": 0.1,
            "url": "http://www.fedoralegacy.org/docs"
          },
          {
            "trust": 0.1,
            "url": "http://download.fedoralegacy.org/fedora/2/updates/srpms/ipsec-tools-0.5-2.fc2.1.legacy.src.rpm"
          },
          {
            "trust": 0.1,
            "url": "http://www.fedoralegacy.org"
          },
          {
            "trust": 0.1,
            "url": "http://download.fedoralegacy.org/fedora/3/updates/srpms/ipsec-tools-0.5-2.fc3.1.legacy.src.rpm"
          },
          {
            "trust": 0.1,
            "url": "http://www.fedoralegacy.org/about/security.php"
          },
          {
            "trust": 0.1,
            "url": "http://download.fedoralegacy.org/fedora/3/updates/x86_64/ipsec-tools-0.5-2.fc3.1.legacy.x86_64.rpm"
          },
          {
            "trust": 0.1,
            "url": "http://bugs.gentoo.org."
          },
          {
            "trust": 0.1,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3671"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/glsa/glsa-200512-04.xml"
          },
          {
            "trust": 0.1,
            "url": "http://creativecommons.org/licenses/by-sa/2.0"
          },
          {
            "trust": 0.1,
            "url": "http://security.gentoo.org/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/"
          },
          {
            "trust": 0.1,
            "url": "http://www.mandriva.com/security/advisories"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.dsc"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.dsc"
          },
          {
            "trust": 0.1,
            "url": "https://nvd.nist.gov/vuln/detail/cve-2005-3732"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6.orig.tar.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.3.3-1ubuntu0.2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.6-1ubuntu1.1.diff.gz"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.3.3-1ubuntu0.2_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_amd64.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/main/i/ipsec-tools/ipsec-tools_0.5-5ubuntu0.1_powerpc.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.5-5ubuntu0.1_i386.deb"
          },
          {
            "trust": 0.1,
            "url": "http://security.ubuntu.com/ubuntu/pool/universe/i/ipsec-tools/racoon_0.6-1ubuntu1.1_powerpc.deb"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "PACKETSTORM",
            "id": "47207"
          },
          {
            "db": "PACKETSTORM",
            "id": "42278"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "db": "PACKETSTORM",
            "id": "42029"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "db": "PACKETSTORM",
            "id": "47207"
          },
          {
            "db": "PACKETSTORM",
            "id": "42278"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "db": "PACKETSTORM",
            "id": "42029"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-22T00:00:00",
            "db": "BID",
            "id": "15523"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "date": "2006-06-11T03:26:47",
            "db": "PACKETSTORM",
            "id": "47207"
          },
          {
            "date": "2005-12-14T07:27:58",
            "db": "PACKETSTORM",
            "id": "42278"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2006-01-27T07:38:51",
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "date": "2005-12-02T17:01:28",
            "db": "PACKETSTORM",
            "id": "42029"
          },
          {
            "date": "2005-11-21T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "date": "2005-11-21T22:03:00",
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2006-11-24T20:35:00",
            "db": "BID",
            "id": "15523"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000685"
          },
          {
            "date": "2005-11-28T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          },
          {
            "date": "2018-10-19T15:38:00",
            "db": "NVD",
            "id": "CVE-2005-3732"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "PACKETSTORM",
            "id": "43428"
          },
          {
            "db": "PACKETSTORM",
            "id": "42029"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          }
        ],
        "trust": 0.8
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "IPSec-Tools IKE Message Handling Denial of Service Vulnerability",
        "sources": [
          {
            "db": "BID",
            "id": "15523"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          }
        ],
        "trust": 0.9
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "resource management error",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-313"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200512-0673

    Vulnerability from variot - Updated: 2022-05-29 20:42

    Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. Some of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. These issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. ADTRAN OS 10.03.03.E is available to address these issues.

    For more information: SA17553

    Several other bugs have also been fixed in this update.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    The vulnerabilities have been reported in ADTRAN OS-based NetVanta products that has the IPSec VPN functionality (Enhanced Feature Pack software) installed. The fix will also be included in the official release of ADTRAN OS 10.04.00.E.

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200512-0673",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "4xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "3xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "5xxx"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "os",
            "scope": null,
            "trust": 0.3,
            "vendor": "adtran",
            "version": null
          },
          {
            "model": "os 4.00.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          },
          {
            "model": "os 3.03.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-4565",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-4565",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-4565",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200512-602",
                "trust": 0.6,
                "value": "CRITICAL"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. \nSome of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. \nThese issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. \nADTRAN OS 10.03.03.E is available to address these issues. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nThe vulnerabilities have been reported in ADTRAN OS-based NetVanta\nproducts that has the IPSec VPN functionality (Enhanced Feature Pack\nsoftware) installed. \nThe fix will also be included in the official release of ADTRAN OS\n10.04.00.E. \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "16028",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "18179",
            "trust": 1.7
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-3027",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "42485",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "id": "VAR-200512-0673",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.1625
      },
      "last_update_date": "2022-05-29T20:42:04.951000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.0,
            "url": "http://www2.adtran.com/support/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18179"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/16028"
          },
          {
            "trust": 1.2,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.3,
            "url": "http://www.adtran.com/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6599/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6598/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6600/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/18179/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-12-22T07:01:32",
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "date": "2005-12-29T11:03:00",
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          },
          {
            "date": "2011-03-08T02:28:00",
            "db": "NVD",
            "id": "CVE-2005-4565"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "ADTRAN NetVanta Products IKE Traffic Multiple Unspecified Vulnerabilities",
        "sources": [
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          }
        ],
        "trust": 0.9
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "format string",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-602"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0110

    Vulnerability from variot - Updated: 2022-05-29 20:14

    Multiple unspecified format string vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability.

    TITLE: IPsec-Tools ISAKMP IKE Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17668

    VERIFY ADVISORY: http://secunia.com/advisories/17668/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    SOFTWARE: IPsec-Tools 0.x http://secunia.com/product/3352/

    DESCRIPTION: A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious people to cause a DoS (Denial of Service).

    The vulnerability is caused due to a NULL pointer dereferencing error when processing certain ISAKMP packets in aggressive mode.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    SOLUTION: Update to version 0.6.3. http://sourceforge.net/project/showfiles.php?group_id=74601&package_id=74949&release_id=372605

    PROVIDED AND/OR DISCOVERED BY: The vendor credits Adrian Portelli.

    ORIGINAL ADVISORY: http://sourceforge.net/mailarchive/forum.php?thread_id=9017454&forum_id=32000 http://sourceforge.net/project/shownotes.php?release_id=372605&group_id=74601

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0110",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "internet key exchange",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "internet key exchange",
            "version": "1"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "key exchange internet key exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89193"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Unknown",
        "sources": [
          {
            "db": "BID",
            "id": "89193"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2005-3666",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3666",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3666",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-269",
                "trust": 0.6,
                "value": "CRITICAL"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple unspecified format string vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. \n\nTITLE:\nIPsec-Tools ISAKMP IKE Message Processing Denial of Service\n\nSECUNIA ADVISORY ID:\nSA17668\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17668/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nIPsec-Tools 0.x\nhttp://secunia.com/product/3352/\n\nDESCRIPTION:\nA vulnerability has been reported in IPsec-Tools, which can be\nexploited by malicious people to cause a DoS (Denial of Service). \n\nThe vulnerability is caused due to a NULL pointer dereferencing error\nwhen processing certain ISAKMP packets in aggressive mode. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nSOLUTION:\nUpdate to version 0.6.3. \nhttp://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605\n\nPROVIDED AND/OR DISCOVERED BY:\nThe vendor credits Adrian Portelli. \n\nORIGINAL ADVISORY:\nhttp://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000\nhttp://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "BID",
            "id": "89193"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.5
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "89193",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89193"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "id": "VAR-200511-0110",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T20:14:54.757000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.5,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.7,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.9,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 1.9,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3666"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3666"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89193"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89193"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89193"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89193"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000678"
          },
          {
            "date": "2005-11-30T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          },
          {
            "date": "2008-09-05T20:54:00",
            "db": "NVD",
            "id": "CVE-2005-3666"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "format string",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-269"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0016

    Vulnerability from variot - Updated: 2022-05-29 20:09

    Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in HP HP-UX B.11.00, B.11.11, and B.11.23 running IPSec, HP Jetdirect 635n IPv6/IPsec Print Server, and HP Tru64 UNIX 5.1B-3 and 5.1B-2/PK4, allow remote attackers to cause a denial of service via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the HP advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. HP-UX is prone to denial of service vulnerabilities. These issues are due to security flaws in HP's IPSec implementation. These vulnerabilities may be triggered by malformed IKE traffic. This issue was discovered with the PROTOS ISAKMP Test Suite and is related to the handling of malformed IKEv1 traffic.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0016",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "tru64",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "hp",
            "version": "5.1b1"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "hp",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "hp",
            "version": "11.00"
          },
          {
            "model": "tru64",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "hp",
            "version": "5.1b3"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "hp",
            "version": "11.23"
          },
          {
            "model": "jetdirect 635n",
            "scope": "eq",
            "trust": 1.0,
            "vendor": "hp",
            "version": "*"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "jetdirect 635n",
            "scope": null,
            "trust": 0.6,
            "vendor": "hp",
            "version": null
          },
          {
            "model": "security gateway rc1",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "clavister",
            "version": "8.60.01"
          },
          {
            "model": "security gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "clavister",
            "version": "8.50.02"
          },
          {
            "model": "security gateway",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "clavister",
            "version": "8.40.05"
          },
          {
            "model": "firewall",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "clavister",
            "version": "8.30.01"
          },
          {
            "model": "tru64 b-3",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.1"
          },
          {
            "model": "tru64 b-2 pk4",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "hp",
            "version": "5.1"
          },
          {
            "model": "hp-ux b.11.11",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "model": "hp-ux b.11.00",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          },
          {
            "model": "hp-ux b.11.23",
            "scope": null,
            "trust": 0.3,
            "vendor": "hp",
            "version": null
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:hp:jetdirect_635n:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:hp-ux:11.23:*:ia64_64-bit:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:tru64:5.1b1:pk4:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hp:tru64:5.1b3:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-3670",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3670",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3670",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-250",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in HP HP-UX B.11.00, B.11.11, and B.11.23 running IPSec, HP Jetdirect 635n IPv6/IPsec Print Server, and HP Tru64 UNIX 5.1B-3 and 5.1B-2/PK4, allow remote attackers to cause a denial of service via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of details in the HP advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. HP-UX is prone to denial of service vulnerabilities. These issues are due to security flaws in HP\u0027s IPSec implementation. These vulnerabilities may be triggered by malformed IKE traffic. \nThis issue was discovered with the PROTOS ISAKMP Test Suite and is related to the handling of malformed IKEv1 traffic. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 3.24
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "NVD",
            "id": "CVE-2005-3670",
            "trust": 3.3
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.2
          },
          {
            "db": "BID",
            "id": "15474",
            "trust": 2.7
          },
          {
            "db": "BID",
            "id": "17030",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1015229",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1015227",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1015727",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2462",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2006-0880",
            "trust": 1.6
          },
          {
            "db": "BID",
            "id": "15471",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "19174",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17598",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "HPSBPI02078",
            "trust": 0.6
          },
          {
            "db": "OVAL",
            "id": "OVAL:ORG.MITRE.OVAL:DEF:5642",
            "trust": 0.6
          },
          {
            "db": "HP",
            "id": "SSRT050979",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "15560",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "id": "VAR-200511-0016",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T20:09:53.039000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-noinfo",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.3,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 3.2,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/15474"
          },
          {
            "trust": 2.4,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.6,
            "url": "http://www.kb.cert.org/vuls/id/mimg-6j6qs4"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1015727"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1015229"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1015227"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/19174"
          },
          {
            "trust": 1.6,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?admit=-1335382922+1141762289787+28353475\u0026docid=c00602119"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/17030"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/15471"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17598"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2006/0880"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/2462"
          },
          {
            "trust": 1.0,
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5642"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3670"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3670"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2006/0880"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2462"
          },
          {
            "trust": 0.6,
            "url": "http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:5642"
          },
          {
            "trust": 0.3,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.3,
            "url": "http://www.clavister.com/"
          },
          {
            "trust": 0.3,
            "url": "http://lists.clavister.com/archives/cfw-users/msg01852.html"
          },
          {
            "trust": 0.3,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.3,
            "url": "http://h30097.www3.hp.com/"
          },
          {
            "trust": 0.3,
            "url": "/archive/1/427071"
          },
          {
            "trust": 0.3,
            "url": "http://www.hp.com/products1/unix/"
          },
          {
            "trust": 0.3,
            "url": "http://r.your.hp.com/r/c/r?1.1.hx.dc.w2b6a.candds...dqzg.1mr_.2rqn9k"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-24T00:00:00",
            "db": "BID",
            "id": "15560"
          },
          {
            "date": "2006-03-08T00:00:00",
            "db": "BID",
            "id": "17030"
          },
          {
            "date": "2005-11-16T00:00:00",
            "db": "BID",
            "id": "15474"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-24T00:00:00",
            "db": "BID",
            "id": "15560"
          },
          {
            "date": "2007-06-27T20:28:00",
            "db": "BID",
            "id": "17030"
          },
          {
            "date": "2005-11-16T00:00:00",
            "db": "BID",
            "id": "15474"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000682"
          },
          {
            "date": "2009-03-04T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-250"
          },
          {
            "date": "2017-10-11T01:30:00",
            "db": "NVD",
            "id": "CVE-2005-3670"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "network",
        "sources": [
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          }
        ],
        "trust": 0.9
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Failure to Handle Exceptional Conditions",
        "sources": [
          {
            "db": "BID",
            "id": "15560"
          },
          {
            "db": "BID",
            "id": "17030"
          },
          {
            "db": "BID",
            "id": "15474"
          }
        ],
        "trust": 0.9
      }
    }

    VAR-200511-0111

    Vulnerability from variot - Updated: 2022-05-29 19:56

    Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. In addition, since "denial of service" is an impact and not a vulnerability, it is unknown which underlying vulnerabilities are actually covered by this particular candidate. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability.

    TITLE: IPsec-Tools ISAKMP IKE Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17668

    VERIFY ADVISORY: http://secunia.com/advisories/17668/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    SOFTWARE: IPsec-Tools 0.x http://secunia.com/product/3352/

    DESCRIPTION: A vulnerability has been reported in IPsec-Tools, which can be exploited by malicious people to cause a DoS (Denial of Service).

    The vulnerability is caused due to a NULL pointer dereferencing error when processing certain ISAKMP packets in aggressive mode.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    SOLUTION: Update to version 0.6.3. http://sourceforge.net/project/showfiles.php?group_id=74601&package_id=74949&release_id=372605

    PROVIDED AND/OR DISCOVERED BY: The vendor credits Adrian Portelli.

    ORIGINAL ADVISORY: http://sourceforge.net/mailarchive/forum.php?thread_id=9017454&forum_id=32000 http://sourceforge.net/project/shownotes.php?release_id=372605&group_id=74601

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0111",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "internet key exchange",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "internet key exchange",
            "version": "1"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "key exchange internet key exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89220"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Unknown",
        "sources": [
          {
            "db": "BID",
            "id": "89220"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2005-3667",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3667",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3667",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-262",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple unspecified vulnerabilities in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable.  In addition, since \"denial of service\" is an impact and not a vulnerability, it is unknown which underlying vulnerabilities are actually covered by this particular candidate. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. \n\nTITLE:\nIPsec-Tools ISAKMP IKE Message Processing Denial of Service\n\nSECUNIA ADVISORY ID:\nSA17668\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17668/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nSOFTWARE:\nIPsec-Tools 0.x\nhttp://secunia.com/product/3352/\n\nDESCRIPTION:\nA vulnerability has been reported in IPsec-Tools, which can be\nexploited by malicious people to cause a DoS (Denial of Service). \n\nThe vulnerability is caused due to a NULL pointer dereferencing error\nwhen processing certain ISAKMP packets in aggressive mode. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nSOLUTION:\nUpdate to version 0.6.3. \nhttp://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605\n\nPROVIDED AND/OR DISCOVERED BY:\nThe vendor credits Adrian Portelli. \n\nORIGINAL ADVISORY:\nhttp://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000\nhttp://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "BID",
            "id": "89220"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.5
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "89220",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89220"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "id": "VAR-200511-0111",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T19:56:13.972000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.5,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.7,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.9,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 1.9,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3667"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3667"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89220"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89220"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89220"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89220"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000679"
          },
          {
            "date": "2005-12-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          },
          {
            "date": "2008-09-05T20:54:00",
            "db": "NVD",
            "id": "CVE-2005-3667"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "unknown",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-262"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200512-0672

    Vulnerability from variot - Updated: 2022-05-29 19:54

    The Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to cause a denial of service via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. Some of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. These issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. ADTRAN OS 10.03.03.E is available to address these issues.

    For more information: SA17553

    Several other bugs have also been fixed in this update.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    The vulnerabilities have been reported in ADTRAN OS-based NetVanta products that has the IPSec VPN functionality (Enhanced Feature Pack software) installed. The fix will also be included in the official release of ADTRAN OS 10.04.00.E.

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200512-0672",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "4xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "3xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "5xxx"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "os",
            "scope": null,
            "trust": 0.3,
            "vendor": "adtran",
            "version": null
          },
          {
            "model": "os 4.00.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          },
          {
            "model": "os 3.03.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-4564",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-4564",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-4564",
                "trust": 1.0,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200512-604",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to cause a denial of service via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. \nSome of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. \nThese issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. \nADTRAN OS 10.03.03.E is available to address these issues. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nThe vulnerabilities have been reported in ADTRAN OS-based NetVanta\nproducts that has the IPSec VPN functionality (Enhanced Feature Pack\nsoftware) installed. \nThe fix will also be included in the official release of ADTRAN OS\n10.04.00.E. \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "16028",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "18179",
            "trust": 1.7
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-3027",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "42485",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "id": "VAR-200512-0672",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.1625
      },
      "last_update_date": "2022-05-29T19:54:22.347000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.0,
            "url": "http://www2.adtran.com/support/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18179"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/16028"
          },
          {
            "trust": 1.2,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.3,
            "url": "http://www.adtran.com/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6599/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6598/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6600/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/18179/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-12-22T07:01:32",
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "date": "2005-12-29T11:03:00",
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          },
          {
            "date": "2011-03-08T02:28:00",
            "db": "NVD",
            "id": "CVE-2005-4564"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "ADTRAN NetVanta Products IKE Traffic Multiple Unspecified Vulnerabilities",
        "sources": [
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          }
        ],
        "trust": 0.9
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "lack of information",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-604"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0112

    Vulnerability from variot - Updated: 2022-05-29 19:26

    Multiple buffer overflows in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0112",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "internet key exchange",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "internet key exchange",
            "version": "1"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "key exchange internet key exchange",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "internet",
            "version": "1"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89210"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:internet_key_exchange:internet_key_exchange:1:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Unknown",
        "sources": [
          {
            "db": "BID",
            "id": "89210"
          }
        ],
        "trust": 0.3
      },
      "cve": "CVE-2005-3668",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "PARTIAL",
                "baseScore": 5.0,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3668",
                "impactScore": 2.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "MEDIUM",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3668",
                "trust": 1.8,
                "value": "MEDIUM"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-266",
                "trust": 0.6,
                "value": "MEDIUM"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple buffer overflows in multiple unspecified implementations of Internet Key Exchange version 1 (IKEv1) have multiple unspecified attack vectors and impacts related to denial of service, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.  NOTE: due to the lack of information in the original sources, it is likely that this candidate will be REJECTed once it is known which implementations are actually vulnerable. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "BID",
            "id": "89210"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.5
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266",
            "trust": 0.6
          },
          {
            "db": "BID",
            "id": "89210",
            "trust": 0.3
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89210"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "id": "VAR-200511-0112",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T19:26:00.694000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.5,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.7,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.9,
            "url": "http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en"
          },
          {
            "trust": 1.9,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.7,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3668"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3668"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89210"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "89210"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89210"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "BID",
            "id": "89210"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000680"
          },
          {
            "date": "2005-12-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          },
          {
            "date": "2008-09-05T20:54:00",
            "db": "NVD",
            "id": "CVE-2005-3668"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-266"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200511-0020

    Vulnerability from variot - Updated: 2022-05-29 19:22

    The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Sun Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked crash) via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the “Overview” for the impact of this vulnerability. Sun Solaris is prone to a denial of service vulnerability. This issue exists in the 'libike' IKE implementation and may impact the availability of the 'in.iked' daemon. This issue was discovered with the PROTOS ISAKMP Test Suite and is related to handling of malformed IKEv1 traffic. This may be triggered by a remote privileged user.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200511-0020",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "9.0"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "sun",
            "version": "10.0"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0"
          },
          {
            "model": "asianux server",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cybertrust",
            "version": "4.0 (x86-64)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "10 (x86)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (sparc)"
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": "9 (x86)"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.2"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.3"
          },
          {
            "model": "ios",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "12.4"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.0"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.1"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.2"
          },
          {
            "model": "pix firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "6.3"
          },
          {
            "model": "pix/asa",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "cisco",
            "version": "7.0"
          },
          {
            "model": "enterprise firewall",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "symantec",
            "version": "8.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.0"
          },
          {
            "model": "screenos",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "juniper",
            "version": "5.2"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r54)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55)"
          },
          {
            "model": "vpn-1/firewall-1",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "check point",
            "version": "ng with application intelligence (r55w)"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.00"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.11"
          },
          {
            "model": "hp-ux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": "11.23"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "3 (ws)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (as)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (es)"
          },
          {
            "model": "enterprise linux",
            "scope": "eq",
            "trust": 0.8,
            "vendor": "red hat",
            "version": "4 (ws)"
          },
          {
            "model": "solaris 9 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "9"
          },
          {
            "model": "solaris 10.0 x86",
            "scope": null,
            "trust": 0.3,
            "vendor": "sun",
            "version": null
          },
          {
            "model": "solaris",
            "scope": "eq",
            "trust": 0.3,
            "vendor": "sun",
            "version": "10"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15420"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:sun:solaris:10.0:*:sparc:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Sun",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          }
        ],
        "trust": 0.6
      },
      "cve": "CVE-2005-3674",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 7.8,
                "confidentialityImpact": "NONE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-3674",
                "impactScore": 6.9,
                "integrityImpact": "NONE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.8,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-3674",
                "trust": 1.8,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200511-235",
                "trust": 0.6,
                "value": "HIGH"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "The Internet Key Exchange version 1 (IKEv1) implementation in the libike library in Sun Solaris 9 and 10 allows remote attackers to cause a denial of service (in.iked crash) via certain crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. ------------ This vulnerability information is a summary of multiple vulnerabilities released at the same time. Please note that the contents of vulnerability information other than the title are included. ------------ I SAKMP (Internet Security Association and Key Management Protocol) Authentication, key management, and SA (security association) of 3 A collective term for multiple protocols. ISAKMP Derived from IKE Is IPSec Key exchange protocol for encrypted communication. In many environments IKEv1 Is used. IKE Communication by phase 1 And phase 2 Divided into phases 1 Then establish a secure communication path, ISAKMP SA Called IKE Exchange own messages. In multiple products ISAKMP/IKE Implementation is illegal ISAKMP Phase 1 There is a problem that causes abnormal behavior when receiving this packet because there is a flaw in the processing of the packet. IKE When a deliberately created packet is sent by a remote attacker with specific information for communication by ISAKMP Services or devices that implement the may be in a service outage.Please refer to the \u201cOverview\u201d for the impact of this vulnerability. Sun Solaris is prone to a denial of service vulnerability.  This issue exists in the \u0027libike\u0027 IKE implementation and may impact the availability of the \u0027in.iked\u0027 daemon. \nThis issue was discovered with the PROTOS ISAKMP Test Suite and is related to handling of malformed IKEv1 traffic.  This may be triggered by a remote privileged user. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "BID",
            "id": "15420"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.7
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 3.2
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674",
            "trust": 2.7
          },
          {
            "db": "BID",
            "id": "15420",
            "trust": 2.7
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 1.6
          },
          {
            "db": "SECTRACK",
            "id": "1015210",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17554",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-2417",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.8
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.8
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "BID",
            "id": "17902",
            "trust": 0.8
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684",
            "trust": 0.8
          },
          {
            "db": "SUNALERT",
            "id": "102040",
            "trust": 0.6
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15420"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "id": "VAR-200511-0020",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 1.0
      },
      "last_update_date": "2022-05-29T19:22:25.240000Z",
      "patch": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/patch#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://www2.itrc.hp.com/service/cki/docdisplay.do?docid=c00555601"
          },
          {
            "title": "HPSBUX02076",
            "trust": 0.8,
            "url": "http://h50221.www5.hp.com/upassist/itrc_japan/assist2/secbltn/hp-ux/hpsbux02076.html"
          },
          {
            "title": "PSN-2005-11-007",
            "trust": 0.8,
            "url": "http://www.juniper.net/support/security/alerts/psn-2005-11-007.txt"
          },
          {
            "title": "AXSA-2006-65:1",
            "trust": 0.8,
            "url": "http://www.miraclelinux.com/support/update/list.php?errata_id=362"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "https://rhn.redhat.com/errata/rhsa-2006-0267.html"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-1"
          },
          {
            "title": "102246",
            "trust": 0.8,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102246-3"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "cisco-sa-20051114-ipsec",
            "trust": 0.8,
            "url": "http://www.cisco.com/japanese/warp/public/3/jp/service/tac/707/cisco-sa-20051114-ipsec-j.shtml"
          },
          {
            "title": "SYM05-025",
            "trust": 0.8,
            "url": "http://www.symantec.com/region/jp/avcenter/security/content/2005.11.21.html"
          },
          {
            "title": "Top Page",
            "trust": 0.8,
            "url": "http://www.checkpoint.co.jp/"
          },
          {
            "title": "RHSA-2006:0267",
            "trust": 0.8,
            "url": "http://www.jp.redhat.com/support/errata/rhsa/rhsa-2006-0267j.html"
          }
        ],
        "sources": [
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          }
        ]
      },
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 3.2,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 2.7,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 2.4,
            "url": "http://www.securityfocus.com/bid/15420"
          },
          {
            "trust": 2.4,
            "url": "http://www.kb.cert.org/vuls/id/226364"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 1.6,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102040-1"
          },
          {
            "trust": 1.6,
            "url": "http://securitytracker.com/id?1015210"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17554"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/2417"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-3674"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/products/vulnerabilitydisclosures/default.aspx?id=va-20051114-01014.xml"
          },
          {
            "trust": 0.8,
            "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-3674"
          },
          {
            "trust": 0.8,
            "url": "http://www.cpni.gov.uk/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 0.8,
            "url": "http://www.securityfocus.com/bid/17902"
          },
          {
            "trust": 0.8,
            "url": "http://www.cyberpolice.go.jp/important/2005/20051118_193244.html"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/2417"
          },
          {
            "trust": 0.3,
            "url": "http://sunsolve.sun.com/searchproxy/document.do?assetkey=1-26-102040-1"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15420"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "15420"
          },
          {
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15420"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-11-18T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "date": "2005-11-18T21:03:00",
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-14T00:00:00",
            "db": "BID",
            "id": "15420"
          },
          {
            "date": "2007-04-01T00:00:00",
            "db": "JVNDB",
            "id": "JVNDB-2005-000684"
          },
          {
            "date": "2005-12-05T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          },
          {
            "date": "2011-03-08T02:26:00",
            "db": "NVD",
            "id": "CVE-2005-3674"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "other",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200511-235"
          }
        ],
        "trust": 0.6
      }
    }

    VAR-200512-0674

    Vulnerability from variot - Updated: 2022-05-29 19:06

    Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. Some of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. These issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. ADTRAN OS 10.03.03.E is available to address these issues.

    For more information: SA17553

    Several other bugs have also been fixed in this update.

    The vulnerability is caused due to errors in the processing of IKEv1 Phase 1 protocol exchange messages. This can be exploited to cause a DoS. * Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T * Cisco PIX Firewall versions up to but not including 6.3(5) * Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4 * Cisco Firewall Services Module (FWSM) versions up to but not including 2.3(3) * Cisco VPN 3000 Series Concentrators versions up to but not including 4.1(7)H and 4.7(2)B * Cisco MDS Series SanOS versions up to but not including 2.1(2)

    Note: For Cisco IOS, only images that contain the Crypto Feature Set are vulnerable.

    SOLUTION: See patch matrix in vendor advisory for information about fixes. http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software

    PROVIDED AND/OR DISCOVERED BY: Oulu University Secure Programming Group (OUSPG) .

    For more information: SA17553

    The vulnerabilities have been reported in ADTRAN OS-based NetVanta products that has the IPSec VPN functionality (Enhanced Feature Pack software) installed. The fix will also be included in the official release of ADTRAN OS 10.04.00.E.

    For more information: SA17553

    Successful exploitation reportedly requires that the attacker is able to perform a full IKE negotiation with the affected system and requires authentication. * VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. * VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. * VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. * VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. * VPN-1 Pro NGX R60 prior to HFA_01. * Check Point Express CI R57. * Firewall-1 GX 3.0.

    SOLUTION: Install the latest HFA (HotFix Accumulator).

    Note: A fix will reportedly not be released for NG FP3. The vendor recommends upgrading to a recent version, and to the most recent HFA of this version.

    The vendor reportedly will release hotfixes for Check Point Express CI and Firewall-1 GX 3.0 at a later date.

    The vulnerability is related to: SA17553

    SOLUTION: Refer to the original advisory from Nortel Networks for instructions how to apply fixes.

    The vulnerability is related to: SA17553

    Successful exploitation requires a weak racoon configuration (e.g. no lifetime proposal or obey mode), and using 3DES/SHA1/DH2.

    TITLE: Symantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of Service

    SECUNIA ADVISORY ID: SA17684

    VERIFY ADVISORY: http://secunia.com/advisories/17684/

    CRITICAL: Moderately critical

    IMPACT: DoS

    WHERE:

    From remote

    OPERATING SYSTEM: Symantec Gateway Security 400 Series http://secunia.com/product/6175/ Symantec Gateway Security 300 Series http://secunia.com/product/6176/ Symantec Gateway Security 3.x http://secunia.com/product/6177/ Symantec Gateway Security 2.x http://secunia.com/product/3104/ Symantec Gateway Security 1.x http://secunia.com/product/876/ Symantec Firewall/VPN Appliance 100/200/200R http://secunia.com/product/552/

    SOFTWARE: Symantec Enterprise Firewall (SEF) 8.x http://secunia.com/product/3587/

    DESCRIPTION: Symantec has acknowledged a vulnerability in various Symantec products, which can be exploited by malicious people to cause a DoS (Denial of Service).

    For more information: SA17553

    Successful exploitation causes a DoS of the dynamic VPN services.

    The vulnerability has been reported in the following products. * Symantec Enterprise Firewall version 8.0 (Windows) * Symantec Enterprise Firewall version 8.0 (Solaris) * Symantec Gateway Security 5000 Series version 3.0 * Symantec Gateway Security 5400 version 2.0.1 * Symantec Gateway Security 5310 version 1.0 * Symantec Gateway Security 5200/5300 version 1.0 * Symantec Gateway Security 5100 * Symantec Gateway Security 400 version 2.0 * Symantec Gateway Security 300 version 2.0 * Symantec Firewall /VPN Appliance 200/200R * Symantec Firewall /VPN Appliance 100

    SOLUTION: Apply hotfixes.

    Symantec Enterprise Firewall version 8.0 (Windows): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html

    Symantec Enterprise Firewall version 8.0 (Solaris): Apply SEF8.0-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html

    Symantec Gateway Security 5000 Series version 3.0: Apply SGS3.0-2005114-02. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html

    Symantec Gateway Security 5400 version 2.0.1: Apply SGS2.0.1-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html

    Symantec Gateway Security 5310 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html

    Symantec Gateway Security 5200/5300 version 1.0: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html

    Symantec Gateway Security 5100: Apply SG7004-20051114-00. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html

    Symantec Gateway Security 400 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html

    Symantec Gateway Security 300 version 2.0: Update to build 1103. http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html

    Symantec Firewall /VPN Appliance 200/200R: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html

    Symantec Firewall /VPN Appliance 100: Update to build 1.8F. http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html

    ORIGINAL ADVISORY: Symantec: http://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html

    OTHER REFERENCES: SA17553: http://secunia.com/advisories/17553/


    About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

    Subscribe: http://secunia.com/secunia_security_advisories/

    Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

    Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.


    Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org


    Show details on source website

    {
      "@context": {
        "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
        "affected_products": {
          "@id": "https://www.variotdbs.pl/ref/affected_products"
        },
        "configurations": {
          "@id": "https://www.variotdbs.pl/ref/configurations"
        },
        "credits": {
          "@id": "https://www.variotdbs.pl/ref/credits"
        },
        "cvss": {
          "@id": "https://www.variotdbs.pl/ref/cvss/"
        },
        "description": {
          "@id": "https://www.variotdbs.pl/ref/description/"
        },
        "exploit_availability": {
          "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
        },
        "external_ids": {
          "@id": "https://www.variotdbs.pl/ref/external_ids/"
        },
        "iot": {
          "@id": "https://www.variotdbs.pl/ref/iot/"
        },
        "iot_taxonomy": {
          "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
        },
        "patch": {
          "@id": "https://www.variotdbs.pl/ref/patch/"
        },
        "problemtype_data": {
          "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
        },
        "references": {
          "@id": "https://www.variotdbs.pl/ref/references/"
        },
        "sources": {
          "@id": "https://www.variotdbs.pl/ref/sources/"
        },
        "sources_release_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
        },
        "sources_update_date": {
          "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
        },
        "threat_type": {
          "@id": "https://www.variotdbs.pl/ref/threat_type/"
        },
        "title": {
          "@id": "https://www.variotdbs.pl/ref/title/"
        },
        "type": {
          "@id": "https://www.variotdbs.pl/ref/type/"
        }
      },
      "@id": "https://www.variotdbs.pl/vuln/VAR-200512-0674",
      "affected_products": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "4xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "3xxx"
          },
          {
            "model": "netvanta",
            "scope": "eq",
            "trust": 1.6,
            "vendor": "adtran",
            "version": "5xxx"
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "check point",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "cisco",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "fortinet",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "hewlett packard",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "nortel",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "openswan linux ipsec",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "qnx",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "stonesoft",
            "version": null
          },
          {
            "model": null,
            "scope": null,
            "trust": 0.8,
            "vendor": "sun microsystems",
            "version": null
          },
          {
            "model": "os",
            "scope": null,
            "trust": 0.3,
            "vendor": "adtran",
            "version": null
          },
          {
            "model": "os 4.00.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          },
          {
            "model": "os 3.03.e",
            "scope": "ne",
            "trust": 0.3,
            "vendor": "adtran",
            "version": "10.0"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "configurations": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/configurations#",
          "children": {
            "@container": "@list"
          },
          "cpe_match": {
            "@container": "@list"
          },
          "data": {
            "@container": "@list"
          },
          "nodes": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "CVE_data_version": "4.0",
            "nodes": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "credits": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/credits#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Discovery is credited to NISCC, CERT-FI, and the Oulu University Secure Programming Group.",
        "sources": [
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          }
        ],
        "trust": 0.9
      },
      "cve": "CVE-2005-4566",
      "cvss": {
        "@context": {
          "cvssV2": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV2#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV2"
          },
          "cvssV3": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/cvssV3#"
            },
            "@id": "https://www.variotdbs.pl/ref/cvssV3/"
          },
          "severity": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/severity#"
            },
            "@id": "https://www.variotdbs.pl/ref/severity"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            },
            "@id": "https://www.variotdbs.pl/ref/sources"
          }
        },
        "data": [
          {
            "cvssV2": [
              {
                "accessComplexity": "LOW",
                "accessVector": "NETWORK",
                "authentication": "NONE",
                "author": "NVD",
                "availabilityImpact": "COMPLETE",
                "baseScore": 10.0,
                "confidentialityImpact": "COMPLETE",
                "exploitabilityScore": 10.0,
                "id": "CVE-2005-4566",
                "impactScore": 10.0,
                "integrityImpact": "COMPLETE",
                "obtainAllPrivilege": false,
                "obtainOtherPrivilege": false,
                "obtainUserPrivilege": false,
                "severity": "HIGH",
                "trust": 1.0,
                "userInteractionRequired": false,
                "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
                "version": "2.0"
              }
            ],
            "cvssV3": [],
            "severity": [
              {
                "author": "NVD",
                "id": "CVE-2005-4566",
                "trust": 1.0,
                "value": "HIGH"
              },
              {
                "author": "CARNEGIE MELLON",
                "id": "VU#226364",
                "trust": 0.8,
                "value": "16.54"
              },
              {
                "author": "CNNVD",
                "id": "CNNVD-200512-608",
                "trust": 0.6,
                "value": "CRITICAL"
              }
            ]
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "description": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/description#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. Numerous vulnerabilities have been reported in various Internet Key Exchange version 1 (IKEv1) implementations. The impacts of these vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or cause an IKEv1 implementation to behave in an unstable/unpredictable manner. Certain ADTRAN NetVanta products are prone to multiple unspecified vulnerabilities in IKEv1. \nSome of the issues could potentially allow for remote code execution and complete compromise of affected devices. This has not been confirmed. \nThese issues were discovered with the PROTOS ISAKMP Test Suite and are related to handling of malformed IKEv1 traffic. \nADTRAN OS 10.03.03.E is available to address these issues. \n\nFor more information:\nSA17553\n\nSeveral other bugs have also been fixed in this update. \r\n\r\nThe vulnerability is caused due to errors in the processing of IKEv1\nPhase 1 protocol exchange messages. This can be exploited to cause a\nDoS. \r\n* Cisco IOS versions based on 12.2SXD, 12.3T, 12.4 and 12.4T\r\n* Cisco PIX Firewall versions up to but not including 6.3(5)\r\n* Cisco PIX Firewall/ASA versions up to but not including 7.0.1.4\r\n* Cisco Firewall Services Module (FWSM) versions up to but not\nincluding 2.3(3)\r\n* Cisco VPN 3000 Series Concentrators versions up to but not\nincluding 4.1(7)H and 4.7(2)B\r\n* Cisco MDS Series SanOS versions up to but not including 2.1(2)\r\n\r\nNote: For Cisco IOS, only images that contain the Crypto Feature Set\nare vulnerable. \n\nSOLUTION:\nSee patch matrix in vendor advisory for information about fixes. \r\nhttp://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software\n\nPROVIDED AND/OR DISCOVERED BY:\nOulu University Secure Programming Group (OUSPG) . \n\nFor more information:\nSA17553\n\nThe vulnerabilities have been reported in ADTRAN OS-based NetVanta\nproducts that has the IPSec VPN functionality (Enhanced Feature Pack\nsoftware) installed. \nThe fix will also be included in the official release of ADTRAN OS\n10.04.00.E. \n\nFor more information:\nSA17553\n\nSuccessful exploitation reportedly requires that the attacker is able\nto perform a full IKE negotiation with the affected system and\nrequires authentication. \n* VPN-1/Firewall-1 NG with AI R54 prior to HFA_417. \n* VPN-1/Firewall-1 NG with AI R55 prior to HFA_16. \n* VPN-1/Firewall-1 NG with AI R55W prior to HFA_04. \n* VPN-1/Firewall-1 NG with AI R55P prior to HFA_06. \n* VPN-1 Pro NGX R60 prior to HFA_01. \n* Check Point Express CI R57. \n* Firewall-1 GX 3.0. \n\nSOLUTION:\nInstall the latest HFA (HotFix Accumulator). \n\nNote: A fix will reportedly not be released for NG FP3. The vendor\nrecommends upgrading to a recent version, and to the most recent HFA\nof this version. \n\nThe vendor reportedly will release hotfixes for Check Point Express\nCI and Firewall-1 GX 3.0 at a later date. \r\n\r\nThe vulnerability is related to:\r\nSA17553\n\nSOLUTION:\nRefer to the original advisory from Nortel Networks for instructions\nhow to apply fixes. \n\nThe vulnerability is related to:\nSA17553\n\nSuccessful exploitation requires a weak racoon configuration (e.g. no\nlifetime proposal or obey mode), and using 3DES/SHA1/DH2. \n\nTITLE:\nSymantec Firewall/VPN/Gateway ISAKMP Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA17684\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/17684/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nSymantec Gateway Security 400 Series\nhttp://secunia.com/product/6175/\nSymantec Gateway Security 300 Series\nhttp://secunia.com/product/6176/\nSymantec Gateway Security 3.x\nhttp://secunia.com/product/6177/\nSymantec Gateway Security 2.x\nhttp://secunia.com/product/3104/\nSymantec Gateway Security 1.x\nhttp://secunia.com/product/876/\nSymantec Firewall/VPN Appliance 100/200/200R\nhttp://secunia.com/product/552/\n\nSOFTWARE:\nSymantec Enterprise Firewall (SEF) 8.x\nhttp://secunia.com/product/3587/\n\nDESCRIPTION:\nSymantec has acknowledged a vulnerability in various Symantec\nproducts, which can be exploited by malicious people to cause a DoS\n(Denial of Service). \n\nFor more information:\nSA17553\n\nSuccessful exploitation causes a DoS of the dynamic VPN services. \n\nThe vulnerability has been reported in the following products. \n* Symantec Enterprise Firewall version 8.0 (Windows)\n* Symantec Enterprise Firewall version 8.0 (Solaris)\n* Symantec Gateway Security 5000 Series version 3.0\n* Symantec Gateway Security 5400 version 2.0.1\n* Symantec Gateway Security 5310 version 1.0\n* Symantec Gateway Security 5200/5300 version 1.0\n* Symantec Gateway Security 5100\n* Symantec Gateway Security 400 version 2.0\n* Symantec Gateway Security 300\tversion 2.0\n* Symantec Firewall /VPN Appliance 200/200R\n* Symantec Firewall /VPN Appliance 100\n\nSOLUTION:\nApply hotfixes. \n\nSymantec Enterprise Firewall version 8.0 (Windows):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html\n\nSymantec Enterprise Firewall version 8.0 (Solaris):\nApply SEF8.0-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html\n\nSymantec Gateway Security 5000 Series version 3.0:\nApply SGS3.0-2005114-02. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html\n\nSymantec Gateway Security 5400 version 2.0.1:\nApply SGS2.0.1-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html\n\nSymantec Gateway Security 5310 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html\n\nSymantec Gateway Security 5200/5300 version 1.0:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html\n\nSymantec Gateway Security 5100:\nApply SG7004-20051114-00. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html\n\nSymantec Gateway Security 400 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html\n\nSymantec Gateway Security 300 version 2.0:\nUpdate to build 1103. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html\n\nSymantec Firewall /VPN Appliance 200/200R:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html\n\nSymantec Firewall /VPN Appliance 100:\nUpdate to build 1.8F. \nhttp://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html\n\nORIGINAL ADVISORY:\nSymantec:\nhttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html\n\nOTHER REFERENCES:\nSA17553:\nhttp://secunia.com/advisories/17553/\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          }
        ],
        "trust": 2.61
      },
      "external_ids": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "db": "BID",
            "id": "16028",
            "trust": 1.9
          },
          {
            "db": "SECUNIA",
            "id": "18179",
            "trust": 1.7
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566",
            "trust": 1.6
          },
          {
            "db": "VUPEN",
            "id": "ADV-2005-3027",
            "trust": 1.6
          },
          {
            "db": "SECUNIA",
            "id": "17621",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17663",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17838",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17553",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17608",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17684",
            "trust": 0.9
          },
          {
            "db": "SECUNIA",
            "id": "17668",
            "trust": 0.9
          },
          {
            "db": "AUSCERT",
            "id": "ESB-2005.0924",
            "trust": 0.8
          },
          {
            "db": "CERT/CC",
            "id": "VU#226364",
            "trust": 0.8
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608",
            "trust": 0.6
          },
          {
            "db": "PACKETSTORM",
            "id": "41982",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41515",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "42485",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41614",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41586",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41791",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41739",
            "trust": 0.1
          },
          {
            "db": "PACKETSTORM",
            "id": "41734",
            "trust": 0.1
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "id": "VAR-200512-0674",
      "iot": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/iot#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": true,
        "sources": [
          {
            "db": "VARIoT devices database",
            "id": null
          }
        ],
        "trust": 0.1625
      },
      "last_update_date": "2022-05-29T19:06:10.849000Z",
      "problemtype_data": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "problemtype": "NVD-CWE-Other",
            "trust": 1.0
          }
        ],
        "sources": [
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "references": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/references#",
          "data": {
            "@container": "@list"
          },
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": [
          {
            "trust": 2.0,
            "url": "http://www2.adtran.com/support/isakmp/"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/17553/"
          },
          {
            "trust": 1.6,
            "url": "http://www.securityfocus.com/bid/16028"
          },
          {
            "trust": 1.6,
            "url": "http://secunia.com/advisories/18179"
          },
          {
            "trust": 1.2,
            "url": "http://www.niscc.gov.uk/niscc/docs/re-20051114-01014.pdf?lang=en"
          },
          {
            "trust": 1.0,
            "url": "http://www.vupen.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17608/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17621/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17684/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17668/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17663/"
          },
          {
            "trust": 0.9,
            "url": "http://secunia.com/advisories/17838/"
          },
          {
            "trust": 0.8,
            "url": "http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp"
          },
          {
            "trust": 0.8,
            "url": "http://www.ficora.fi/suomi/tietoturva/varoitukset/varoitus-2005-82.htm"
          },
          {
            "trust": 0.8,
            "url": "http://www.auscert.org.au/5748"
          },
          {
            "trust": 0.8,
            "url": "http://jvn.jp/niscc/niscc-273756/index.html"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/secunia_security_advisories/"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
          },
          {
            "trust": 0.8,
            "url": "http://secunia.com/about_secunia_advisories/"
          },
          {
            "trust": 0.6,
            "url": "http://www.frsirt.com/english/advisories/2005/3027"
          },
          {
            "trust": 0.3,
            "url": "http://www.adtran.com/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5625/"
          },
          {
            "trust": 0.1,
            "url": "http://www.astaro.org/showflat.php?cat=\u0026number=63958\u0026page=0\u0026view=collapsed\u0026sb=5\u0026o=\u0026fpart=1#63958"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/90/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/50/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6102/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/706/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/182/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/56/"
          },
          {
            "trust": 0.1,
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml#software"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/5088/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6101/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2273/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3214/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/59/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6599/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6598/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6600/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/advisories/18179/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/89/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6148/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6010/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6149/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2542/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6124/"
          },
          {
            "trust": 0.1,
            "url": "http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?cscat=bltndetail\u0026documentoid=367651\u0026renditionid="
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6125/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6126/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/2576/"
          },
          {
            "trust": 0.1,
            "url": "https://clientweb.clavister.com/"
          },
          {
            "trust": 0.1,
            "url": "http://www.clavister.com/support/support_update_isakmp.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6205/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3352/"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/showfiles.php?group_id=74601\u0026package_id=74949\u0026release_id=372605"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/mailarchive/forum.php?thread_id=9017454\u0026forum_id=32000"
          },
          {
            "trust": 0.1,
            "url": "http://sourceforge.net/project/shownotes.php?release_id=372605\u0026group_id=74601"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8_sol/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3104/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_200r/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6177/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_fw_vpn_appliance/sym_fw_vpn_appliance_100/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_ent_firewall/sym_ent_fw_8/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/3587/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5310/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_5110/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6175/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/6176/"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/552/"
          },
          {
            "trust": 0.1,
            "url": "http://securityresponse.symantec.com/avcenter/security/content/2005.11.21.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_300s_2/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://secunia.com/product/876/"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_5600_3/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sgs_2_400/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_1_52005300/files.html"
          },
          {
            "trust": 0.1,
            "url": "http://www.symantec.com/techsupp/enterprise/products/sym_gateway_security/sym_gw_security_201_5400/files.html"
          }
        ],
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "sources": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "db": "BID",
            "id": "16028"
          },
          {
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "sources_release_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2005-11-17T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-01T18:48:38",
            "db": "PACKETSTORM",
            "id": "41982"
          },
          {
            "date": "2005-11-15T06:02:23",
            "db": "PACKETSTORM",
            "id": "41515"
          },
          {
            "date": "2005-12-22T07:01:32",
            "db": "PACKETSTORM",
            "id": "42485"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41614"
          },
          {
            "date": "2005-11-19T21:56:12",
            "db": "PACKETSTORM",
            "id": "41586"
          },
          {
            "date": "2005-11-30T04:03:08",
            "db": "PACKETSTORM",
            "id": "41791"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41739"
          },
          {
            "date": "2005-11-22T18:19:46",
            "db": "PACKETSTORM",
            "id": "41734"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "date": "2005-12-29T11:03:00",
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "sources_update_date": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
          "data": {
            "@container": "@list"
          }
        },
        "data": [
          {
            "date": "2006-01-03T00:00:00",
            "db": "CERT/CC",
            "id": "VU#226364"
          },
          {
            "date": "2005-11-23T00:00:00",
            "db": "BID",
            "id": "16028"
          },
          {
            "date": "2005-12-29T00:00:00",
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          },
          {
            "date": "2011-03-08T02:28:00",
            "db": "NVD",
            "id": "CVE-2005-4566"
          }
        ]
      },
      "threat_type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "remote",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          }
        ],
        "trust": 0.6
      },
      "title": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/title#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "Multiple vulnerabilities in Internet Key Exchange (IKE) version 1 implementations",
        "sources": [
          {
            "db": "CERT/CC",
            "id": "VU#226364"
          }
        ],
        "trust": 0.8
      },
      "type": {
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/type#",
          "sources": {
            "@container": "@list",
            "@context": {
              "@vocab": "https://www.variotdbs.pl/ref/sources#"
            }
          }
        },
        "data": "buffer overflow",
        "sources": [
          {
            "db": "CNNVD",
            "id": "CNNVD-200512-608"
          }
        ],
        "trust": 0.6
      }
    }

    CVE-2011-4060 (GCVE-0-2011-4060)

    Vulnerability from nvd – Published: 2011-10-18 01:00 – Updated: 2024-08-06 23:53
    VLAI
    Summary
    The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2011-03-11 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T23:53:32.676Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20110629 Breaking the links: Exploiting the linker",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/518659"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
              },
              {
                "name": "71784",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/71784"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
              },
              {
                "name": "46838",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/46838"
              },
              {
                "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/516958"
              },
              {
                "name": "8475",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/8475"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-03-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-09-01T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20110629 Breaking the links: Exploiting the linker",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/518659"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
            },
            {
              "name": "71784",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/71784"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
            },
            {
              "name": "46838",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/46838"
            },
            {
              "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/516958"
            },
            {
              "name": "8475",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/8475"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-4060",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20110629 Breaking the links: Exploiting the linker",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/518659"
                },
                {
                  "name": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
                },
                {
                  "name": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc",
                  "refsource": "MISC",
                  "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
                },
                {
                  "name": "71784",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/71784"
                },
                {
                  "name": "http://www.qnx.com/developers/articles/rel_5189_46.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
                },
                {
                  "name": "46838",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/46838"
                },
                {
                  "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/516958"
                },
                {
                  "name": "8475",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/8475"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-4060",
        "datePublished": "2011-10-18T01:00:00.000Z",
        "dateReserved": "2011-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-06T23:53:32.676Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0618 (GCVE-0-2006-0618)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name).
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://securitytracker.com/id?1015599 vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/22966 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:28.946Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "qnx-fontsleuth-format-string(24559)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24559"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "20060207 QNX Neutrino RTOS fontsleuth Command Format String Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=380"
              },
              {
                "name": "1015599",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015599"
              },
              {
                "name": "22966",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22966"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "qnx-fontsleuth-format-string(24559)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24559"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "20060207 QNX Neutrino RTOS fontsleuth Command Format String Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=380"
            },
            {
              "name": "1015599",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015599"
            },
            {
              "name": "22966",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22966"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0618",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Format string vulnerability in fontsleuth in QNX Neutrino RTOS 6.3.0 allows local users to execute arbitrary code via format string specifiers in the zeroth argument (program name)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "qnx-fontsleuth-format-string(24559)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24559"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "20060207 QNX Neutrino RTOS fontsleuth Command Format String Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=380"
                },
                {
                  "name": "1015599",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015599"
                },
                {
                  "name": "22966",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22966"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0618",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:28.946Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0620 (GCVE-0-2006-0620)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1015599 vdb-entryx_refsource_SECTRACK
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    http://www.osvdb.org/22963 vdb-entryx_refsource_OSVDB
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:28.783Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "qnx-phfont-race-condition(24555)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24555"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "1015599",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015599"
              },
              {
                "name": "20060207 QNX Neutrino RTOS phfont Race Condition Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=383"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              },
              {
                "name": "22963",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22963"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "qnx-phfont-race-condition(24555)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24555"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "1015599",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015599"
            },
            {
              "name": "20060207 QNX Neutrino RTOS phfont Race Condition Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=383"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            },
            {
              "name": "22963",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22963"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0620",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Race condition in phfont in QNX Neutrino RTOS 6.2.1 allows local users to execute arbitrary code via unspecified manipulations of the PHFONT and PHOTON2_PATH environment variables."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "qnx-phfont-race-condition(24555)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24555"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "1015599",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015599"
                },
                {
                  "name": "20060207 QNX Neutrino RTOS phfont Race Condition Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=383"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                },
                {
                  "name": "22963",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22963"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0620",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:28.783Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0621 (GCVE-0-2006-0621)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/22961 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/22959 vdb-entryx_refsource_OSVDB
    http://securitytracker.com/id?1015599 vdb-entryx_refsource_SECTRACK
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:28.976Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "qnx-su-bo(24554)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24554"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "22961",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22961"
              },
              {
                "name": "22959",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22959"
              },
              {
                "name": "1015599",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015599"
              },
              {
                "name": "20060207 QNX Neutrino RTOS passwd Command Buffer Overflow",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=388"
              },
              {
                "name": "20060207 QNX Neutrino RTOS su Command Buffer Overflow",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=385"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              },
              {
                "name": "qnx-passwd-bo(24551)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24551"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "qnx-su-bo(24554)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24554"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "22961",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22961"
            },
            {
              "name": "22959",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22959"
            },
            {
              "name": "1015599",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015599"
            },
            {
              "name": "20060207 QNX Neutrino RTOS passwd Command Buffer Overflow",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=388"
            },
            {
              "name": "20060207 QNX Neutrino RTOS su Command Buffer Overflow",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=385"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            },
            {
              "name": "qnx-passwd-bo(24551)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24551"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0621",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in QNX Neutrino RTOS 6.2.0 allow local users to execute arbitrary code via a long first argument to the (1) su or (2) passwd commands."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "qnx-su-bo(24554)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24554"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "22961",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22961"
                },
                {
                  "name": "22959",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22959"
                },
                {
                  "name": "1015599",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015599"
                },
                {
                  "name": "20060207 QNX Neutrino RTOS passwd Command Buffer Overflow",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=388"
                },
                {
                  "name": "20060207 QNX Neutrino RTOS su Command Buffer Overflow",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=385"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                },
                {
                  "name": "qnx-passwd-bo(24551)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24551"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0621",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:28.976Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0622 (GCVE-0-2006-0622)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    QNX Neutrino RTOS 6.3.0 allows local users to cause a denial of service (hang) by supplying a "break *0xb032d59f" command to gdb.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1015598 vdb-entryx_refsource_SECTRACK
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    http://www.osvdb.org/22960 vdb-entryx_refsource_OSVDB
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:28.914Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "qnx-gdb-dos(24553)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24553"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "1015598",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015598"
              },
              {
                "name": "20060207 QNX RTOS 6.3.0 Local Denial of Service Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=386"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              },
              {
                "name": "22960",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22960"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "QNX Neutrino RTOS 6.3.0 allows local users to cause a denial of service (hang) by supplying a \"break *0xb032d59f\" command to gdb."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "qnx-gdb-dos(24553)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24553"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "1015598",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015598"
            },
            {
              "name": "20060207 QNX RTOS 6.3.0 Local Denial of Service Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=386"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            },
            {
              "name": "22960",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22960"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0622",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "QNX Neutrino RTOS 6.3.0 allows local users to cause a denial of service (hang) by supplying a \"break *0xb032d59f\" command to gdb."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "qnx-gdb-dos(24553)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24553"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "1015598",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015598"
                },
                {
                  "name": "20060207 QNX RTOS 6.3.0 Local Denial of Service Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=386"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                },
                {
                  "name": "22960",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22960"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0622",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:28.914Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0619 (GCVE-0-2006-0619)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/id?1015599 vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/22964 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/22965 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:28.791Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20060207 QNX Neutrino RTOS libAp ABLPATH Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=381"
              },
              {
                "name": "20060207 QNX Neutrino RTOS libph PHOTON_PATH Buffer Overflow Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=382"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "qnx-libph-bo(24557)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24557"
              },
              {
                "name": "1015599",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015599"
              },
              {
                "name": "22964",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22964"
              },
              {
                "name": "22965",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22965"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              },
              {
                "name": "qnx-libap-bo(24558)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24558"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20060207 QNX Neutrino RTOS libAp ABLPATH Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=381"
            },
            {
              "name": "20060207 QNX Neutrino RTOS libph PHOTON_PATH Buffer Overflow Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=382"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "qnx-libph-bo(24557)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24557"
            },
            {
              "name": "1015599",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015599"
            },
            {
              "name": "22964",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22964"
            },
            {
              "name": "22965",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22965"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            },
            {
              "name": "qnx-libap-bo(24558)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24558"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0619",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple stack-based buffer overflows in QNX Neutrino RTOS 6.3.0 allow local users to execute arbitrary code via long (1) ABLPATH or (2) ABLANG environment variables in the libAP library (libAp.so.2) or (3) a long PHOTON_PATH environment variable to the setitem function in the libph library."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20060207 QNX Neutrino RTOS libAp ABLPATH Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=381"
                },
                {
                  "name": "20060207 QNX Neutrino RTOS libph PHOTON_PATH Buffer Overflow Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=382"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "qnx-libph-bo(24557)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24557"
                },
                {
                  "name": "1015599",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015599"
                },
                {
                  "name": "22964",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22964"
                },
                {
                  "name": "22965",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22965"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                },
                {
                  "name": "qnx-libap-bo(24558)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24558"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0619",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:28.791Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0623 (GCVE-0-2006-0623)

    Vulnerability from nvd – Published: 2006-02-09 02:00 – Updated: 2024-08-07 16:41
    VLAI
    Summary
    QNX Neutrino RTOS 6.3.0 ships /etc/rc.d/rc.local with world-writable permissions, which allows local users to modify the file and execute arbitrary code at system startup.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0474 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/18750 third-party-advisoryx_refsource_SECUNIA
    http://securitytracker.com/id?1015598 vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/22958 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/16539 vdb-entryx_refsource_BID
    Date Public
    2006-02-07 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:41:29.189Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20060207 QNX RTOS 6.3.0 rc.local Insecure File Permissions Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=387"
              },
              {
                "name": "qnx-rclocal-root-privileges(24552)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24552"
              },
              {
                "name": "ADV-2006-0474",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0474"
              },
              {
                "name": "18750",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18750"
              },
              {
                "name": "1015598",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015598"
              },
              {
                "name": "22958",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22958"
              },
              {
                "name": "16539",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16539"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-02-07T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "QNX Neutrino RTOS 6.3.0 ships /etc/rc.d/rc.local with world-writable permissions, which allows local users to modify the file and execute arbitrary code at system startup."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-19T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20060207 QNX RTOS 6.3.0 rc.local Insecure File Permissions Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=387"
            },
            {
              "name": "qnx-rclocal-root-privileges(24552)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24552"
            },
            {
              "name": "ADV-2006-0474",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0474"
            },
            {
              "name": "18750",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18750"
            },
            {
              "name": "1015598",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015598"
            },
            {
              "name": "22958",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22958"
            },
            {
              "name": "16539",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16539"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0623",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "QNX Neutrino RTOS 6.3.0 ships /etc/rc.d/rc.local with world-writable permissions, which allows local users to modify the file and execute arbitrary code at system startup."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20060207 QNX RTOS 6.3.0 rc.local Insecure File Permissions Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=387"
                },
                {
                  "name": "qnx-rclocal-root-privileges(24552)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24552"
                },
                {
                  "name": "ADV-2006-0474",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0474"
                },
                {
                  "name": "18750",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18750"
                },
                {
                  "name": "1015598",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015598"
                },
                {
                  "name": "22958",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22958"
                },
                {
                  "name": "16539",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16539"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0623",
        "datePublished": "2006-02-09T02:00:00.000Z",
        "dateReserved": "2006-02-09T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:41:29.189Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2011-4060 (GCVE-0-2011-4060)

    Vulnerability from cvelistv5 – Published: 2011-10-18 01:00 – Updated: 2024-08-06 23:53
    VLAI
    Summary
    The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2011-03-11 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-06T23:53:32.676Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20110629 Breaking the links: Exploiting the linker",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/518659"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
              },
              {
                "name": "71784",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/71784"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
              },
              {
                "name": "46838",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/46838"
              },
              {
                "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/516958"
              },
              {
                "name": "8475",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/8475"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2011-03-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-09-01T12:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20110629 Breaking the links: Exploiting the linker",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/518659"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
            },
            {
              "name": "71784",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/71784"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
            },
            {
              "name": "46838",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/46838"
            },
            {
              "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/516958"
            },
            {
              "name": "8475",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/8475"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2011-4060",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The runtime linker in QNX Neutrino RTOS 6.5.0 before Service Pack 1 does not properly clear the LD_DEBUG_OUTPUT and LD_DEBUG environment variables when a program is spawned from a setuid program, which allows local users to overwrite files via a symlink attack."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20110629 Breaking the links: Exploiting the linker",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/518659"
                },
                {
                  "name": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.qnx.com/developers/docs/6.5.0_sp1/index.jsp?topic=%2Fcom.qnx.doc.momentics_release_notes%2Frel_6.5.0_SP1.html"
                },
                {
                  "name": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc",
                  "refsource": "MISC",
                  "url": "http://www.nth-dimension.org.uk/pub/NDSA20110310.txt.asc"
                },
                {
                  "name": "71784",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/71784"
                },
                {
                  "name": "http://www.qnx.com/developers/articles/rel_5189_46.html",
                  "refsource": "CONFIRM",
                  "url": "http://www.qnx.com/developers/articles/rel_5189_46.html"
                },
                {
                  "name": "46838",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/46838"
                },
                {
                  "name": "20110311 Medium severity flaw in QNX Neutrino RTOS",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/516958"
                },
                {
                  "name": "8475",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/8475"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2011-4060",
        "datePublished": "2011-10-18T01:00:00.000Z",
        "dateReserved": "2011-10-15T00:00:00.000Z",
        "dateUpdated": "2024-08-06T23:53:32.676Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2002-2407 (GCVE-0-2002-2407)

    Vulnerability from cvelistv5 – Published: 2007-11-01 17:00 – Updated: 2024-09-17 00:41
    VLAI
    Summary
    Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othello, (10) peg, (11) solitaire, and (12) vpoker in the games pack 2.0.3, which allows local users to gain privileges by modifying the files before permissions are changed.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://archives.neohapsis.com/archives/bugtraq/20… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/6206 vdb-entryx_refsource_BID
    http://www.iss.net/security_center/static/10656.php vdb-entryx_refsource_XF
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:59:12.006Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20021119 Multiple incorrect permissions in QNX.",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0255.html"
              },
              {
                "name": "6206",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/6206"
              },
              {
                "name": "qnx-rtos-improper-permissions(10656)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/security_center/static/10656.php"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othello, (10) peg, (11) solitaire, and (12) vpoker in the games pack 2.0.3, which allows local users to gain privileges by modifying the files before permissions are changed."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2007-11-01T17:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20021119 Multiple incorrect permissions in QNX.",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0255.html"
            },
            {
              "name": "6206",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/6206"
            },
            {
              "name": "qnx-rtos-improper-permissions(10656)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "http://www.iss.net/security_center/static/10656.php"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-2407",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Certain patches for QNX Neutrino realtime operating system (RTOS) 6.2.0 set insecure permissions for the files (1) /sbin/io-audio by OS Update Patch A, (2) /bin/shutdown, (3) /sbin/fs-pkg, and (4) phshutdown by QNX experimental patches, (5) cpim, (6) vpim, (7) phrelaycfg, and (8) columns, (9) othello, (10) peg, (11) solitaire, and (12) vpoker in the games pack 2.0.3, which allows local users to gain privileges by modifying the files before permissions are changed."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20021119 Multiple incorrect permissions in QNX.",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0255.html"
                },
                {
                  "name": "6206",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/6206"
                },
                {
                  "name": "qnx-rtos-improper-permissions(10656)",
                  "refsource": "XF",
                  "url": "http://www.iss.net/security_center/static/10656.php"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-2407",
        "datePublished": "2007-11-01T17:00:00.000Z",
        "dateReserved": "2007-11-01T00:00:00.000Z",
        "dateUpdated": "2024-09-17T00:41:30.145Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2002-2409 (GCVE-0-2002-2409)

    Vulnerability from cvelistv5 – Published: 2007-11-01 17:00 – Updated: 2024-09-16 23:51
    VLAI
    Summary
    Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.iss.net/security_center/static/10658.php vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/6207 vdb-entryx_refsource_BID
    http://archives.neohapsis.com/archives/bugtraq/20… mailing-listx_refsource_BUGTRAQ
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T03:59:12.011Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "qnx-photon-view-clipboard(10658)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "http://www.iss.net/security_center/static/10658.php"
              },
              {
                "name": "6207",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/6207"
              },
              {
                "name": "20021119 Clipboard in QNX Photon",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2007-11-01T17:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "qnx-photon-view-clipboard(10658)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "http://www.iss.net/security_center/static/10658.php"
            },
            {
              "name": "6207",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/6207"
            },
            {
              "name": "20021119 Clipboard in QNX Photon",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2002-2409",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "qnx-photon-view-clipboard(10658)",
                  "refsource": "XF",
                  "url": "http://www.iss.net/security_center/static/10658.php"
                },
                {
                  "name": "6207",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/6207"
                },
                {
                  "name": "20021119 Clipboard in QNX Photon",
                  "refsource": "BUGTRAQ",
                  "url": "http://archives.neohapsis.com/archives/bugtraq/2002-11/0267.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2002-2409",
        "datePublished": "2007-11-01T17:00:00.000Z",
        "dateReserved": "2007-11-01T00:00:00.000Z",
        "dateUpdated": "2024-09-16T23:51:22.728Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }