CVE-2005-3669
CVSS5.0
发布时间 :2005-11-18 16:03:00
修订时间 :2009-03-04 00:40:26
NMCS    

[原文]Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Cisco advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to.


[CNNVD]Cisco IPSec未明IKE通讯拒绝服务漏洞(CNNVD-200511-271)

        IP Security或IPSec是IETF的一套标准化协议,用于支持IP报文的加密和/或认证传输,通常用在虚拟专用网(VPN)中。
        多个Cisco产品在处理IPSec IKE消息时存在漏洞。IPSec的PROTOS测试组件可通过向目标设备发送畸形的IKE消息测试IPSec实现的设计局限。如果收到了特定的畸形报文的话,有漏洞的Cisco设备可能重置,导致临时的拒绝服务。
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/o:cisco:vpn_3000_concentrator:4.7.1
cpe:/o:cisco:pix_firewall:6.2
cpe:/o:cisco:pix_firewall:5.0
cpe:/o:cisco:vpn_3000_concentrator:3.1.2
cpe:/o:cisco:pix_firewall:6.2%283%29
cpe:/a:cisco:pix_firewall:6.2.3_%28110%29
cpe:/o:cisco:pix_firewall:6.3%283.102%29
cpe:/o:cisco:vpn_3000_concentrator:2.5.2.c
cpe:/o:cisco:pix_firewall:6.1%282%29
cpe:/o:cisco:ios:12.3yiCisco IOS 12.3YI
cpe:/o:cisco:ios:12.3ywCisco IOS 12.3 YW
cpe:/o:cisco:pix_firewall:5.2%289%29
cpe:/o:cisco:ios:12.2sxdCisco IOS 12.2SXD
cpe:/o:cisco:vpn_3000_concentrator:4.0.5.b
cpe:/o:cisco:vpn_3000_concentrator:4.1.5.b
cpe:/o:cisco:ios:12.3xsCisco IOS 12.3XS
cpe:/o:cisco:pix_firewall:6.2%283.100%29
cpe:/o:cisco:pix_firewall:6.1%284%29
cpe:/o:cisco:pix_firewall:5.1%284.206%29
cpe:/o:cisco:pix_firewall:4.3
cpe:/o:cisco:pix_firewall:6.1%281%29
cpe:/o:cisco:pix_firewall:5.3%281.200%29
cpe:/h:cisco:mds_9000Cisco MDS 9000
cpe:/o:cisco:pix_firewall:5.2%282%29
cpe:/o:cisco:vpn_3000_concentrator:3.6.1
cpe:/o:cisco:pix_firewall:6.2%281%29
cpe:/o:cisco:vpn_3000_concentrator:3.1%28rel%29
cpe:/o:cisco:vpn_3000_concentrator:2.5.2.d
cpe:/a:cisco:pix_firewall:6.2.2_.111
cpe:/o:cisco:vpn_3000_concentrator:3.5.2
cpe:/o:cisco:pix_firewall:5.2
cpe:/o:cisco:pix_firewall:4.2
cpe:/o:cisco:ios:12.3xdCisco IOS 12.3XD
cpe:/h:cisco:firewall_services_module:1.1.3Cisco Firewall Services Module 1.1.3
cpe:/o:cisco:ios:12.3yxCisco IOS 12.3YX
cpe:/o:cisco:pix_firewall:4.2%285%29
cpe:/o:cisco:pix_firewall:6.1.5%28104%29Cisco PIX Firewall 6.1.5 (104)
cpe:/o:cisco:ios:12.3xmCisco IOS 12.3XM
cpe:/o:cisco:ios:12.3xiCisco IOS 12.3XI
cpe:/o:cisco:pix_firewall:5.3
cpe:/o:cisco:ios:12.3ygCisco IOS 12.3YG
cpe:/o:cisco:pix_firewall:6.0%283%29
cpe:/o:cisco:pix_firewall:5.3%283%29
cpe:/o:cisco:ios:12.3xhCisco IOS 12.3XH
cpe:/o:cisco:pix_firewall:6.3%282%29
cpe:/o:cisco:vpn_3000_concentrator:3.5.3
cpe:/o:cisco:ios:12.3xjCisco IOS 12.3XJ
cpe:/o:cisco:ios:12.3tpcCisco IOS 12TPC
cpe:/o:cisco:vpn_3000_concentrator:3.1.1
cpe:/o:cisco:ios:12.3ykCisco IOS 12.3YK
cpe:/o:cisco:ios:12.4tCisco IOS 12.4T
cpe:/o:cisco:ios:12.3xkCisco IOS 12.3XK
cpe:/o:cisco:pix_firewall:6.1%285%29
cpe:/o:cisco:vpn_3000_concentrator:3.0.3.a
cpe:/a:cisco:pix_firewall:6.3.3_%28133%29
cpe:/o:cisco:ios:12.3yqCisco IOS 12.3YQ
cpe:/o:cisco:vpn_3000_concentrator:3.0.4
cpe:/o:cisco:pix_firewall:5.3%281%29
cpe:/o:cisco:vpn_3000_concentrator:3.1
cpe:/o:cisco:pix_firewall:5.2%287%29
cpe:/o:cisco:vpn_3000_concentrator:3.6.7
cpe:/o:cisco:pix_firewall:6.3%283.109%29
cpe:/o:cisco:vpn_3000_concentrator:4.0
cpe:/o:cisco:vpn_3000_concentrator:3.0
cpe:/o:cisco:ios:12.3xeCisco IOS 12.3XE
cpe:/o:cisco:pix_firewall:6.3%281%29
cpe:/h:cisco:firewall_services_module:1.1_%283.005%29Cisco Firewall Services Module 1.1 (3.005)
cpe:/o:cisco:ios:12.3yfCisco IOS 12.3YF
cpe:/o:cisco:vpn_3000_concentrator:3.5.5
cpe:/o:cisco:vpn_3000_concentrator:3.5.1
cpe:/o:cisco:pix_firewall:5.3%282%29
cpe:/o:cisco:ios:12.3yaCisco IOS 12.3YA
cpe:/o:cisco:pix_firewall:4.1%286b%29
cpe:/o:cisco:pix_firewall:4.2%282%29
cpe:/o:cisco:ios:12.3xgCisco IOS 12.3XG
cpe:/o:cisco:ios:12.3ytCisco IOS 12.3YT
cpe:/o:cisco:pix_firewall:4.4%287.202%29
cpe:/o:cisco:vpn_3000_concentrator:4.0.1
cpe:/o:cisco:vpn_3000_concentrator:3.6.7d
cpe:/o:cisco:pix_firewall:3.1
cpe:/o:cisco:pix_firewall:5.1
cpe:/h:cisco:firewall_services_module:2.1_%280.208%29Cisco Firewall Services Module 2.1 (0.208)
cpe:/o:cisco:ios:12.3ysCisco IOS 12.3YS
cpe:/o:cisco:pix_firewall:2.7
cpe:/o:cisco:pix_firewall:5.2%283.210%29
cpe:/o:cisco:pix_firewall:6.3
cpe:/o:cisco:mds_9000:2.0%280.86%29
cpe:/o:cisco:vpn_3000_concentrator:3.5%28rel%29
cpe:/o:cisco:pix_firewall:6.2%282%29
cpe:/o:cisco:mds_9000:1.3%283.33%29
cpe:/o:cisco:pix_firewall:4.4
cpe:/o:cisco:pix_firewall:5.2%285%29
cpe:/h:cisco:firewall_services_module:1.1.2Cisco Firewall Services Module 1.1.2
cpe:/o:cisco:ios:12.3xqCisco IOS 12.3XQ
cpe:/o:cisco:ios:12.3ymCisco IOS 12.3YM
cpe:/o:cisco:pix_firewall:6.1%283%29
cpe:/o:cisco:ios:12.3yuCisco IOS 12.3YU
cpe:/o:cisco:vpn_3000_concentrator:2.0
cpe:/o:cisco:vpn_3000_concentrator:2.5.2.b
cpe:/o:cisco:pix_firewall:5.2%281%29
cpe:/o:cisco:vpn_3000_concentrator:3.1.4
cpe:/o:cisco:pix_firewall:3.0
cpe:/o:cisco:pix_firewall:6.1
cpe:/o:cisco:vpn_3000_concentrator:2.5.2.a
cpe:/o:cisco:pix_firewall:4.1%286%29
cpe:/o:cisco:vpn_3000_concentrator:4.1.7.b
cpe:/o:cisco:pix_firewall:4.2%281%29
cpe:/o:cisco:pix_firewall:6.0%284.101%29
cpe:/o:cisco:ios:12.4Cisco IOS 12.4
cpe:/o:cisco:ios:12.4xaCisco IOS 12.4XA
cpe:/o:cisco:pix_firewall:6.0%281%29
cpe:/h:cisco:firewall_services_moduleCisco Firewall Services Module
cpe:/o:cisco:pix_firewall:6.0
cpe:/o:cisco:ios:12.3xuCisco IOS 12.3XU
cpe:/o:cisco:ios:12.3tCisco IOS 12.3T
cpe:/o:cisco:ios:12.3xwCisco IOS 12.3XW
cpe:/o:cisco:pix_firewall:4.4%288%29
cpe:/o:cisco:vpn_3000_concentrator:3.0.3.b
cpe:/o:cisco:adaptive_security_appliance:7.0
cpe:/o:cisco:pix_firewall:5.2%286%29
cpe:/o:cisco:vpn_3000_concentrator:2.5.2.f
cpe:/o:cisco:ios:12.3xrCisco IOS 12.3XR
cpe:/o:cisco:ios:12.3xfCisco IOS 12.3XF
cpe:/o:cisco:vpn_3000_concentrator:3.5.4
cpe:/o:cisco:pix_firewall:5.1%284%29
cpe:/o:cisco:pix_firewall:6.0%284%29
cpe:/o:cisco:ios:12.3ydCisco IOS 12.3YD
cpe:/o:cisco:vpn_3000_concentrator:4.7.1.f
cpe:/o:cisco:ios:12.3yhCisco IOS 12.3YH
cpe:/o:cisco:ios:12.3yjCisco IOS 12.3YJ
cpe:/o:cisco:ios:12.3xxCisco IOS 12.3XX
cpe:/o:cisco:ios:12.4xbCisco IOS 12.4XB
cpe:/o:cisco:vpn_3000_concentrator:3.6
cpe:/o:cisco:pix_firewall:4.0
cpe:/o:cisco:pix_firewall:4.4%284%29
cpe:/o:cisco:pix_firewall:6.0%282%29
cpe:/o:cisco:vpn_3000_concentrator:4.1.7.a
cpe:/o:cisco:mds_9000:1.3%284a%29

- OVAL (用于检测的技术细节)

oval:org.mitre.oval:def:5226Cisco Systems Malformed IPSec IKE DoS Vulnerability
*OVAL详细的描述了检测该漏洞的方法,你可以从相关的OVAL定义中找到更多检测该漏洞的技术细节。

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3669
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3669
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200511-271
(官方数据源) CNNVD

- 其它链接及资源

http://www.kb.cert.org/vuls/id/226364
(VENDOR_ADVISORY)  CERT-VN  VU#226364
http://www.securityfocus.com/bid/15401
(UNKNOWN)  BID  15401
http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en
(VENDOR_ADVISORY)  MISC  http://www.niscc.gov.uk/niscc/docs/br-20051114-01013.html?lang=en
http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
(UNKNOWN)  MISC  http://www.ee.oulu.fi/research/ouspg/protos/testing/c09/isakmp/
http://www.cisco.com/warp/public/707/cisco-sa-20051114-ipsec.shtml
(VENDOR_ADVISORY)  CISCO  20051114 Multiple Vulnerabilities Found by PROTOS IPSec Test Suite
http://securitytracker.com/id?1015202
(UNKNOWN)  SECTRACK  1015202
http://securitytracker.com/id?1015201
(UNKNOWN)  SECTRACK  1015201
http://securitytracker.com/id?1015200
(UNKNOWN)  SECTRACK  1015200
http://securitytracker.com/id?1015199
(UNKNOWN)  SECTRACK  1015199
http://securitytracker.com/id?1015198
(UNKNOWN)  SECTRACK  1015198
http://jvn.jp/niscc/NISCC-273756/index.html
(UNKNOWN)  MISC  http://jvn.jp/niscc/NISCC-273756/index.html
http://secunia.com/advisories/17553
(UNKNOWN)  SECUNIA  17553

- 漏洞信息

Cisco IPSec未明IKE通讯拒绝服务漏洞
中危 其他
2005-11-18 00:00:00 2009-03-04 00:00:00
远程  
        IP Security或IPSec是IETF的一套标准化协议,用于支持IP报文的加密和/或认证传输,通常用在虚拟专用网(VPN)中。
        多个Cisco产品在处理IPSec IKE消息时存在漏洞。IPSec的PROTOS测试组件可通过向目标设备发送畸形的IKE消息测试IPSec实现的设计局限。如果收到了特定的畸形报文的话,有漏洞的Cisco设备可能重置,导致临时的拒绝服务。
        

- 公告与补丁

        暂无数据

- 漏洞信息

Cisco IPSec Unspecified IKE Traffic Denial Of Service Vulnerabilities
Failure to Handle Exceptional Conditions 15401
Yes No
2005-11-14 12:00:00 2005-11-14 12:00:00
Discovery is credited to Cisco in cooperation with CERT-FI and NISCC.

- 受影响的程序版本

Cisco VPN 3000 Concentrator 4.7.1 F
Cisco VPN 3000 Concentrator 4.7.1
Cisco VPN 3000 Concentrator 4.1.5 .B
Cisco VPN 3000 Concentrator 4.0.5 .B
Cisco VPN 3000 Concentrator 4.0.1
Cisco VPN 3000 Concentrator 4.0
Cisco VPN 3000 Concentrator 3.6.7 D
Cisco VPN 3000 Concentrator 3.6.7
Cisco VPN 3000 Concentrator 3.6.1
Cisco VPN 3000 Concentrator 3.6
Cisco VPN 3000 Concentrator 3.5.5
Cisco VPN 3000 Concentrator 3.5.4
Cisco VPN 3000 Concentrator 3.5.3
Cisco VPN 3000 Concentrator 3.5.2
Cisco VPN 3000 Concentrator 3.5.1
Cisco VPN 3000 Concentrator 3.5 (Rel)
Cisco VPN 3000 Concentrator 3.1.4
Cisco VPN 3000 Concentrator 3.1.2
Cisco VPN 3000 Concentrator 3.1.1
Cisco VPN 3000 Concentrator 3.1 (Rel)
Cisco VPN 3000 Concentrator 3.1
Cisco VPN 3000 Concentrator 3.0.4
Cisco VPN 3000 Concentrator 3.0.3 (B)
Cisco VPN 3000 Concentrator 3.0.3 (A)
Cisco VPN 3000 Concentrator 3.0
Cisco VPN 3000 Concentrator 3.0
Cisco VPN 3000 Concentrator 2.5.2 (F)
Cisco VPN 3000 Concentrator 2.5.2 (D)
Cisco VPN 3000 Concentrator 2.5.2 (C)
Cisco VPN 3000 Concentrator 2.5.2 (B)
Cisco VPN 3000 Concentrator 2.5.2 (A)
Cisco VPN 3000 Concentrator 2.0
Cisco VPN 3000 Concentrator 4.1.7.B
Cisco VPN 3000 Concentrator 4.1.7.A
Cisco PIX/ASA 7.0
Cisco PIX Firewall 6.3.3 (133)
Cisco PIX Firewall 6.3.2
Cisco PIX Firewall 6.3.1
Cisco PIX Firewall 6.3 (3.109)
Cisco PIX Firewall 6.3 (3.102)
Cisco PIX Firewall 6.3 (1)
Cisco PIX Firewall 6.3
Cisco PIX Firewall 6.2.3 (110)
Cisco PIX Firewall 6.2.3
Cisco PIX Firewall 6.2.2 .111
Cisco PIX Firewall 6.2.2
Cisco PIX Firewall 6.2.1
Cisco PIX Firewall 6.2 (3.100)
Cisco PIX Firewall 6.2 (3)
Cisco PIX Firewall 6.2 (2)
Cisco PIX Firewall 6.2 (1)
Cisco PIX Firewall 6.2
Cisco PIX Firewall 6.1.5 (104)
Cisco PIX Firewall 6.1.5
Cisco PIX Firewall 6.1.4
Cisco PIX Firewall 6.1.3
Cisco PIX Firewall 6.1 (5)
Cisco PIX Firewall 6.1 (4)
Cisco PIX Firewall 6.1 (3)
Cisco PIX Firewall 6.1 (2)
Cisco PIX Firewall 6.1 (1)
Cisco PIX Firewall 6.1
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 6.0.4
Cisco PIX Firewall 6.0.3
Cisco PIX Firewall 6.0 (4.101)
Cisco PIX Firewall 6.0 (4)
Cisco PIX Firewall 6.0 (2)
Cisco PIX Firewall 6.0 (1)
Cisco PIX Firewall 6.0
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 5.3 (3)
Cisco PIX Firewall 5.3 (2)
Cisco PIX Firewall 5.3 (1.200)
Cisco PIX Firewall 5.3 (1)
Cisco PIX Firewall 5.3
Cisco PIX Firewall 5.2 (9)
Cisco PIX Firewall 5.2 (7)
Cisco PIX Firewall 5.2 (6)
Cisco PIX Firewall 5.2 (5)
Cisco PIX Firewall 5.2 (3.210)
Cisco PIX Firewall 5.2 (2)
Cisco PIX Firewall 5.2 (1)
Cisco PIX Firewall 5.2
Cisco PIX Firewall 5.1.4
Cisco PIX Firewall 5.1 (4.206)
Cisco PIX Firewall 5.1
Cisco PIX Firewall 5.0
+ Cisco PIX Firewall 515
+ Cisco PIX Firewall 520
Cisco PIX Firewall 4.4 (8)
Cisco PIX Firewall 4.4 (7.202)
Cisco PIX Firewall 4.4 (4)
Cisco PIX Firewall 4.4
Cisco PIX Firewall 4.3
Cisco PIX Firewall 4.2.2
Cisco PIX Firewall 4.2.1
Cisco PIX Firewall 4.2 (5)
Cisco PIX Firewall 4.2
Cisco PIX Firewall 4.1.6 b
Cisco PIX Firewall 4.1.6
Cisco PIX Firewall 4.0
Cisco PIX Firewall 3.1
Cisco PIX Firewall 3.0
Cisco PIX Firewall 2.7
Cisco MDS 9000 2.0 (0.86)
Cisco MDS 9000 1.3 (4a)
Cisco MDS 9000 1.3 (3.33)
Cisco MDS 9000
Cisco IOS 12.4XB
Cisco IOS 12.4XA
Cisco IOS 12.4T
Cisco IOS 12.4
Cisco IOS 12.4
Cisco IOS 12.3YX
Cisco IOS 12.3YW
Cisco IOS 12.3YU
Cisco IOS 12.3YT
Cisco IOS 12.3YS
Cisco IOS 12.3YQ
Cisco IOS 12.3YM
Cisco IOS 12.3YK
Cisco IOS 12.3YJ
Cisco IOS 12.3YI
Cisco IOS 12.3YH
Cisco IOS 12.3YG
Cisco IOS 12.3YF
Cisco IOS 12.3YD
Cisco IOS 12.3YA
Cisco IOS 12.3XX
Cisco IOS 12.3XW
Cisco IOS 12.3XU
Cisco IOS 12.3XS
Cisco IOS 12.3XR
Cisco IOS 12.3XQ
Cisco IOS 12.3XM
Cisco IOS 12.3XK
Cisco IOS 12.3XJ
Cisco IOS 12.3XI
Cisco IOS 12.3XH
Cisco IOS 12.3XG
Cisco IOS 12.3XF
Cisco IOS 12.3XE
Cisco IOS 12.3XD
Cisco IOS 12.3TPC
Cisco IOS 12.3T
Cisco IOS 12.2SXD
Cisco Firewall Services Module (FWSM) 2.1 (0.208)
Cisco Firewall Services Module (FWSM) 1.1.3
Cisco Firewall Services Module (FWSM) 1.1.2
Cisco Firewall Services Module (FWSM) 1.1 (3.005)
Cisco Firewall Services Module (FWSM) 0
Cisco IOS 12.4(4)T
Cisco IOS 12.4(3b)
Cisco IOS 12.4(2)XB
Cisco IOS 12.4(2)T2
Cisco IOS 12.4(1c)
Cisco IOS 12.3(14)YQ4
Cisco IOS 12.3(14)YM4
Cisco IOS 12.3(14)T8
Cisco IOS 12.3(14)T5
Cisco IOS 12.2(18)SXE
Cisco IOS 12.2(18)SXD7

- 不受影响的程序版本

Cisco IOS 12.4(4)T
Cisco IOS 12.4(3b)
Cisco IOS 12.4(2)XB
Cisco IOS 12.4(2)T2
Cisco IOS 12.4(1c)
Cisco IOS 12.3(14)YQ4
Cisco IOS 12.3(14)YM4
Cisco IOS 12.3(14)T8
Cisco IOS 12.3(14)T5
Cisco IOS 12.2(18)SXE
Cisco IOS 12.2(18)SXD7

- 漏洞讨论

Various Cisco IOS, PIX Firewall, Firewall Services Module (FWSM), VPN 3000 Series Concentrator, and MDS Series SanOS releases are prone to denial of service attacks. These issues are due to security flaws in Cisco's IPSec implementation. The vulnerabilities may be triggered by malformed IKE traffic.

Successful attacks will cause most affected devices to restart. For Cisco MDS Series devices, this is limited to causing the IKE process to restart.

- 漏洞利用

These issues can be reproduced with the PROTOS IPSec Test Suite.

- 解决方案

Cisco has released an advisory detailing fixes for affected devices. Please see the attached advisory for further information.

Cisco has made revision 1.4 of their advisory available. Updates to this advisory modify the affected packages list as well as changes to the 'Additional Details' section. Please see the referenced advisory for further information.

Cisco has made revision 1.5 of their advisory available. Updates to this advisory modify the affected packages list as well as changes to the 'Additional Details' section. Please see the referenced advisory for further information.

Cisco has made revision 1.6 of their advisory available. Some additional details for Cisco IOS were added. Please see the referenced advisory for further information.

Cisco has made revision 1.7 of their advisory available. The release date for fixed software version 12.3(11)T9 has been altered to be 27 Dec. 2005. Please see the referenced advisory for further information.

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站