Details of VAR-200505-0128

ID

VAR-200505-0128

CVE

CVE-2005-1802

TITLE

Nortel VPN Router malformed packet denial of service vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200505-1218

DESCRIPTION

Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header. Multiple Nortel Networks products are prone to a remote denial of service vulnerability. The issue manifests when the affected appliance processes an IKE main packet (ISAKMP) header of a certain type. When the packet is processed, the vulnerability is triggered and the device crashes, effectively denying service for legitimate users. Nortel VPN routers provide routing, VPN, firewall, bandwidth management, encryption, authentication, and data integrity functions for secure connections over IP networks and the Internet. A denial of service vulnerability exists in the Nortel VPN router product (formerly known as Nortel Contivity) when performing VPN security tests on users

Trust: 1.26

sources: NVD: CVE-2005-1802 // BID: 13792 // VULHUB: VHN-13011

AFFECTED PRODUCTS

vendor:	nortel	model:	contivity	scope:	eq	version:	4600_secure_ip_services_gateway	Trust: 1.6
vendor:	nortel	model:	contivity	scope:	eq	version:	4500_secure_ip_services_gateway	Trust: 1.6
vendor:	nortel	model:	contivity	scope:	eq	version:	1000_vpn_switch	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	2000_vpn_switch	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	2500_vpn_switch	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	1500_vpn_switch	Trust: 1.0
vendor:	nortel	model:	vpn router 1740	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	vpn router 1700	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	vpn router 600	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	vpn router 2700	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	1600_secure_ip_services_gateway	Trust: 1.0
vendor:	nortel	model:	vpn router 5000	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	vpn router 1100	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	4000_vpn_switch	Trust: 1.0
vendor:	nortel	model:	vpn router 1050	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	contivity	scope:	eq	version:	2600_secure_ip_services_gateway	Trust: 1.0
vendor:	nortel	model:	vpn router 1010	scope:	eq	version:	*	Trust: 1.0
vendor:	nortel	model:	vpn router 1100	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 1050	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 1740	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 2700	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 5000	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 600	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 1700	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	vpn router 1010	scope:	-	version:	-	Trust: 0.6
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	6000	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	5000	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	2700	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	1740	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	1700	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	1100	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	1050	Trust: 0.3
vendor:	nortel	model:	networks vpn router	scope:	eq	version:	1010	Trust: 0.3
vendor:	nortel	model:	networks contivity secure ip services gateway	scope:	eq	version:	4600	Trust: 0.3
vendor:	nortel	model:	networks contivity secure ip services gateway	scope:	eq	version:	4500	Trust: 0.3
vendor:	nortel	model:	networks contivity vpn switch	scope:	eq	version:	4000	Trust: 0.3
vendor:	nortel	model:	networks contivity secure ip services gateway	scope:	eq	version:	2600	Trust: 0.3
vendor:	nortel	model:	networks contivity vpn switch	scope:	eq	version:	2500	Trust: 0.3
vendor:	nortel	model:	networks contivity vpn switch	scope:	eq	version:	2000	Trust: 0.3
vendor:	nortel	model:	networks contivity secure ip services gateway	scope:	eq	version:	1600	Trust: 0.3
vendor:	nortel	model:	networks contivity vpn switch	scope:	eq	version:	1500	Trust: 0.3
vendor:	nortel	model:	networks contivity vpn switch	scope:	eq	version:	1000	Trust: 0.3

sources: BID: 13792 // CNNVD: CNNVD-200505-1218 // NVD: CVE-2005-1802

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2005-1802
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200505-1218
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-13011
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2005-1802
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-13011
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-13011 // CNNVD: CNNVD-200505-1218 // NVD: CVE-2005-1802

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-1802

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-1218

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200505-1218

EXTERNAL IDS

db:	BID	id:	13792	Trust: 2.0
db:	NVD	id:	CVE-2005-1802	Trust: 2.0
db:	SECTRACK	id:	1014068	Trust: 1.7
db:	CNNVD	id:	CNNVD-200505-1218	Trust: 0.7
db:	BUGTRAQ	id:	20050531 NORTEL VPN ROUTER MALFORMED PACKET DOS VULNERABILITY	Trust: 0.6
db:	VULHUB	id:	VHN-13011	Trust: 0.1

sources: VULHUB: VHN-13011 // BID: 13792 // CNNVD: CNNVD-200505-1218 // NVD: CVE-2005-1802

REFERENCES

url:	http://www.securityfocus.com/bid/13792	Trust: 1.7
url:	http://www.securityfocus.com/archive/1/399423	Trust: 1.7
url:	http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/	Trust: 1.7
url:	http://securitytracker.com/id?1014068	Trust: 1.7
url:	http://www130.nortelnetworks.com/cgi-bin/eserv/cs/main.jsp?level=6&category=29&subcategory=1&documentoid=328562	Trust: 0.3
url:	http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/index.htm	Trust: 0.3
url:	/archive/1/401129	Trust: 0.3

sources: VULHUB: VHN-13011 // BID: 13792 // CNNVD: CNNVD-200505-1218 // NVD: CVE-2005-1802

CREDITS

Roy Hills※ Roy.Hills@nta-monitor.com

Trust: 0.6

sources: CNNVD: CNNVD-200505-1218

SOURCES

db:	VULHUB	id:	VHN-13011
db:	BID	id:	13792
db:	CNNVD	id:	CNNVD-200505-1218
db:	NVD	id:	CVE-2005-1802

LAST UPDATE DATE

2024-08-14T15:36:05.276000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-13011	date:	2008-09-05T00:00:00
db:	BID	id:	13792	date:	2009-07-12T14:56:00
db:	CNNVD	id:	CNNVD-200505-1218	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2005-1802	date:	2008-09-05T20:50:08.417

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-13011	date:	2005-05-27T00:00:00
db:	BID	id:	13792	date:	2005-05-27T00:00:00
db:	CNNVD	id:	CNNVD-200505-1218	date:	2005-05-27T00:00:00
db:	NVD	id:	CVE-2005-1802	date:	2005-05-27T04:00:00