CVE-2018-5389

Name of the Vulnerable Software and Affected Versions Internet Key Exchange (IKE) version 1

Description The Internet Key Exchange v1 main mode is susceptible to offline dictionary or brute force attacks. Reusing a key pair across different versions and modes of IKE could lead to cross-protocol authentication bypasses. It is known that the aggressive mode of IKEv1 PSK is vulnerable to offline dictionary or brute force attacks. For the main mode, however, only an online attack against PSK authentication was thought to be feasible. This issue could allow an attacker to recover a weak Pre-Shared Key or enable the impersonation of a victim host or network.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.