Description
Buffer overflow in the Internet Key Exchange version 1 (IKEv1) implementation in Symantec Dynamic VPN Services, as used in Enterprise Firewall, Gateway Security, and Firewall /VPN Appliance products, allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Affected products
- Symantec / enterprise_firewall8.0 – 8.0
- Symantec / enterprise_firewall8.0 – 8.0
- Symantec / firewall_vpn_appliance_100
- Symantec / firewall_vpn_appliance_200
- Symantec / gateway_security_3002.0 – 2.0
- Symantec / gateway_security_4002.0 – 2.0
- Symantec / gateway_security_5000_series3.0 – 3.0
- Symantec / gateway_security_5100
- Symantec / gateway_security_53001.0 – 1.0
- Symantec / gateway_security_53101.0 – 1.0
- Symantec / gateway_security_54002.0.1 – 2.0.1
References
- MISChttp://securitytracker.com/id?1015247
- VENDOR_ADVISORYhttp://secunia.com/advisories/17684
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2005/2517
- MISChttp://securitytracker.com/id?1015249
- MISChttp://securityresponse.symantec.com/avcenter/security/Content/2005.11.21.html
- MISChttp://securitytracker.com/id?1015248