CVE-2005-4566

Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/18179	Patch Vendor Advisory
http://www.securityfocus.com/bid/16028	Patch
http://www.vupen.com/english/advisories/2005/3027
http://www2.adtran.com/support/isakmp/	Patch
http://secunia.com/advisories/18179	Patch Vendor Advisory
http://www.securityfocus.com/bid/16028	Patch
http://www.vupen.com/english/advisories/2005/3027
http://www2.adtran.com/support/isakmp/	Patch

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:adtran:netvanta:3xxx:::::::*
	cpe:2.3:h:adtran:netvanta:4xxx:::::::*
	cpe:2.3:h:adtran:netvanta:5xxx:::::::*

History

No history.

Information

Published : 2005-12-29 11:03

Updated : 2025-04-03 01:03

NVD link : CVE-2005-4566

Mitre link : CVE-2005-4566

CVE.ORG link : CVE-2005-4566

JSON object : View

Products Affected

adtran

netvanta

CWE

NVD-CWE-Other

{"id": "CVE-2005-4566", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2005-12-29T11:03:00.000", "references": [{"url": "http://secunia.com/advisories/18179", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/16028", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2005/3027", "source": "cve@mitre.org"}, {"url": "http://www2.adtran.com/support/isakmp/", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18179", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/16028", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2005/3027", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www2.adtran.com/support/isakmp/", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:adtran:netvanta:3xxx:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "093D7E4E-6DCC-4BBB-B6B2-2A679E95CC28"}, {"criteria": "cpe:2.3:h:adtran:netvanta:4xxx:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1CEA4735-EC77-4179-86DC-C8BF702CCD08"}, {"criteria": "cpe:2.3:h:adtran:netvanta:5xxx:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF1B393E-6DC3-4F5F-B24C-8207245C74E1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}