Denial of Service Vulnerability in IKEv1 Implementation in racoon

Denial of Service Vulnerability in IKEv1 Implementation in racoon

CVE-2005-3732 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:N/A:C

The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in racoon in ipsec-tools before 0.6.3, when running in aggressive mode, allows remote attackers to cause a denial of service (null dereference and crash) via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.