PT-2007-5040 · Clavister · Clavister Coreplus
Publicado
2007-07-16
·
Atualizado
2017-07-29
·
CVE-2007-3805
CVSS v2.0
5.4
Média
| Vetor | AV:N/AC:H/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions:
Clavister CorePlus versions prior to 8.80.03
Description:
The issue is related to the IKE implementation, which does not properly validate certificates during IKE negotiation. This allows remote attackers to cause a denial of service, resulting in the gateway stopping, by using certain certificates.
Recommendations:
For versions prior to 8.80.03, update to version 8.80.03 or later to resolve the issue.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Clavister Coreplus