Vulnerability Description
Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nortel | Contivity | 1000_vpn_switch |
| Nortel | Vpn Router 1010 | All versions |
| Nortel | Vpn Router 1050 | All versions |
| Nortel | Vpn Router 1100 | All versions |
| Nortel | Vpn Router 1700 | All versions |
| Nortel | Vpn Router 1740 | All versions |
| Nortel | Vpn Router 2700 | All versions |
| Nortel | Vpn Router 5000 | All versions |
| Nortel | Vpn Router 600 | All versions |
References
- http://securitytracker.com/id?1014068
- http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/
- http://www.securityfocus.com/archive/1/399423
- http://www.securityfocus.com/bid/13792PatchVendor Advisory
- http://securitytracker.com/id?1014068
- http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/
- http://www.securityfocus.com/archive/1/399423
- http://www.securityfocus.com/bid/13792PatchVendor Advisory
FAQ
What is CVE-2005-1802?
CVE-2005-1802 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header.
How severe is CVE-2005-1802?
CVE-2005-1802 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1802?
Check the references section above for vendor advisories and patch information. Affected products include: Nortel Contivity, Nortel Vpn Router 1010, Nortel Vpn Router 1050, Nortel Vpn Router 1100, Nortel Vpn Router 1700.