Vulnerability Description
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre-shared key, and only support 48 byte keys. This allows a remote attacker to brute force attack the pre-shared keys with significantly less resources than if the full 128 byte IKE pre-shared keys were used.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sonicwall | Soho2 | 6.0.0 |
| Sonicwall | Tele2 | 6.0.0 |
References
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0403.htmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6304
- http://archives.neohapsis.com/archives/bugtraq/2001-03/0403.htmlPatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6304
FAQ
What is CVE-2001-0376?
CVE-2001-0376 is a vulnerability with a CVSS score of 7.5 (HIGH). SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre...
How severe is CVE-2001-0376?
CVE-2001-0376 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-0376?
Check the references section above for vendor advisories and patch information. Affected products include: Sonicwall Soho2, Sonicwall Tele2.