CVE-2003-1320

Name of the Vulnerable Software and Affected Versions SonicWALL firmware versions prior to 6.4.0.1

Description The issue allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted Internet Key Exchange (IKE) response packets. This can be achieved by including a large Security Parameter Index (SPI) field, a large number of payloads, or a long payload in the packets.

Recommendations For versions prior to 6.4.0.1, update to version 6.4.0.1 or later to resolve the issue. As a temporary workaround, consider restricting access to IKE response packets to minimize the risk of exploitation.