CVE-2005-3768

Name of the Vulnerable Software and Affected Versions Symantec Dynamic VPN Services versions (affected versions not specified) Cisco products (affected versions not specified)

Description The issue is related to a buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation, allowing remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets. This was demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. The vulnerability can be repeatedly exploited to produce a denial of service.

Recommendations For Symantec Dynamic VPN Services, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco products, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment before deploying the free software made available by Cisco to address this vulnerability.