CVE-2005-0039

Name of the Vulnerable Software and Affected Versions IPsec (affected versions not specified)

Description The issue affects certain configurations of IPsec, specifically when using Encapsulating Security Payload (ESP) in tunnel mode, integrity protection at a higher layer, or Authentication Header (AH). Remote attackers can decrypt IPsec communications by modifying the outer packet, causing plaintext data from the inner packet to be returned in ICMP messages. This can be achieved through bit-flipping attacks and techniques such as Destination Address Rewriting, modifying the header length to interpret portions of the packet as IP Options, or modifying the protocol field and source address.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.