CVE-2007-3805
Severity:
Pending analysis
Type:
CWE-310
Cryptographic Issues
Publication date:
16/07/2007
Last modified:
29/07/2017
Description
The IKE implementation in Clavister CorePlus before 8.80.03, and 8.80.00, does not properly validate certificates during IKE negotiation, which allows remote attackers to cause a denial of service (gateway stop) via certain certificates.
Impact
Base Score 2.0
5.40
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:a:clavister:clavister_coreplus:*:*:*:*:*:*:*:* | 8.80.03 (including) | |
cpe:2.3:a:clavister:clavister_coreplus:8.81.00:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page