First published: Thu Dec 29 2005(Updated: )
Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta before 10.03.03.E might allow remote attackers to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
ADTRAN NetVanta | =5xxx | |
ADTRAN NetVanta | =4xxx | |
ADTRAN NetVanta | =3xxx |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-4565 has a severity rating that suggests it could allow remote attackers to exploit format string vulnerabilities.
To fix CVE-2005-4565, upgrade your ADTRAN NetVanta device to version 10.03.03.E or later.
CVE-2005-4565 affects ADTRAN NetVanta models in the 3xxx, 4xxx, and 5xxx series before version 10.03.03.E.
Yes, CVE-2005-4565 can be exploited remotely via specially crafted IKE packets.
CVE-2005-4565 is a format string vulnerability in the IKEv1 implementation.