Vulnerability Description
Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usernames via an IKE Aggressive Mode packet, which generates a response if the username is valid but does not respond when the username is invalid.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Neoteris | Instant Virtual Extranet | 3.0 |
| Juniper | Netscreen Screenos | 1.7 |
| Netscreen | Ns-10 | All versions |
| Netscreen | Ns-100 | 3.0_.pe1.0 |
| Netscreen | Ns-204 | 5.0.0_r6.0 |
| Netscreen | Ns-500 | 4110.0_11_4.0_r10.0 |
| Netscreen | Ns-50Ns25 | 5.0.0_r6.0 |
| Juniper | Netscreen-5Gt | 5.0 |
| Juniper | Netscreen-Idp | 3.0 |
| Juniper | Netscreen-Idp 10 | 3.0.1_r1 |
| Juniper | Netscreen-Idp 100 | 3.0.1_r1 |
| Juniper | Netscreen-Idp 1000 | 3.0.1_r1 |
| Juniper | Netscreen-Idp 500 | 3.0.1_r1 |
| Netscreen | Netscreen-Sa 5000 Series | All versions |
| Netscreen | Netscreen-Sa 5020 Series | 4.2_r2.2 |
| Netscreen | Netscreen-Sa 5050 Series | 4.2_r2.2 |
References
- http://marc.info/?l=bugtraq&m=112438068426034&w=2
- http://secunia.com/advisories/16474/Vendor Advisory
- http://securitytracker.com/id?1014728
- http://www.nta-monitor.com/news/vpn-flaws/juniper/netscreen/index.htmExploitVendor Advisory
- http://www.securityfocus.com/bid/14595Exploit
- http://marc.info/?l=bugtraq&m=112438068426034&w=2
- http://secunia.com/advisories/16474/Vendor Advisory
- http://securitytracker.com/id?1014728
- http://www.nta-monitor.com/news/vpn-flaws/juniper/netscreen/index.htmExploitVendor Advisory
- http://www.securityfocus.com/bid/14595Exploit
FAQ
What is CVE-2005-2640?
CVE-2005-2640 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Behavioral discrepancy information leak in Juniper Netscreen VPN running ScreenOS 5.2.0 and earlier, when using IKE with pre-shared key authentication, allows remote attackers to enumerate valid usern...
How severe is CVE-2005-2640?
CVE-2005-2640 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2640?
Check the references section above for vendor advisories and patch information. Affected products include: Neoteris Instant Virtual Extranet, Juniper Netscreen Screenos, Netscreen Ns-10, Netscreen Ns-100, Netscreen Ns-204.