Vulnerability CVE-2004-0369 - CERT Civis.Net

Vulnerability Name:

CVE-2004-0369 (CCN-15669)

Assigned:

2004-03-30

Published:

2004-03-30

Updated:

2017-07-11

Summary:

Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Symantec FTP Update Web site
FTP updates

Source: CCN
Type: Symantec SG7004-20040715-00 - Entrust updates
Symantec VelociRaptor 1.5

Source: MITRE
Type: CNA
CVE-2004-0369

Source: CCN
Type: Symantec Security Response SYM04-012
Symantec IPsec/ISAKMP VPN Buffer Overflow

Source: CONFIRM
Type: Vendor Advisory
http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html

Source: AUSCERT
Type: Vendor Advisory
ESB-2004.0538

Source: CCN
Type: CIAC Information Bulletin 0-206
Entrust LibKmp Library Vulnerabilities

Source: CIAC
Type: Vendor Advisory
O-206

Source: CCN
Type: Network Working Group Web site
Request for Comments: 2408 Internet Security Association and Key Management Protocol (ISAKMP)

Source: CCN
Type: OSVDB ID: 9165
Symantec Gateway Security ISAKMPd Handling DoS

Source: CCN
Type: OSVDB ID: 9448
Symantec Enterprise Firewall ISAKMPd Handling DoS

Source: CCN
Type: OSVDB ID: 9449
Symantec VelociRaptor ISAKMPd Handling DoS

Source: BID
Type: UNKNOWN
11039

Source: CCN
Type: BID-11039
Entrust LibKMP ISAKMP Library Remote IPsec/ISAKMP Buffer Overflow Vulnerability

Source: CCN
Type: Internet Security Systems Protection Advisory August 26, 2004
Entrust LibKmp Library Buffer Overflow

Source: ISS
Type: Patch, Vendor Advisory
20040826 Entrust LibKmp Library Buffer Overflow

Source: XF
Type: UNKNOWN
isakmp-spi-size-bo(15669)

Source: XF
Type: UNKNOWN
isakmp-spi-size-bo(15669)

Vulnerable Configuration:

Configuration 1:

cpe:/a:entrust:entrust_libkmp_isakmp_library:*:*:*:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:7.0:*:solaris:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:7.0.4:*:solaris:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:7.0.4:*:windows_2000_nt:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:8.0:*:solaris:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:8.0:*:windows_2000_nt:*:*:*:*:*

OR cpe:/a:symantec:velociraptor:1.5:*:*:*:*:*:*:*

Configuration 2:

cpe:/h:symantec:gateway_security_5300:1.0:*:*:*:*:*:*:*

OR cpe:/h:symantec:gateway_security_5400:2.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:symantec:velociraptor:1.5:*:*:*:*:*:*:*

OR cpe:/h:symantec:gateway_security:5300_1.0:*:*:*:*:*:*:*

OR cpe:/h:symantec:gateway_security:5400_2.0:*:*:*:*:*:*:*

OR cpe:/a:cisco:vpn_5000_client:-:*:*:*:*:*:*:*

OR cpe:/a:symantec:enterprise_firewall:-:*:*:*:*:*:*:*

Denotes that component is vulnerable