Nortel VPN Router (aka Contivity) allows remote attackers to cause a denial of service (crash) via an IPsec IKE packet with a malformed ISAKMP header.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Contivity | Nortel | 1000_vpn_switch (including) | 1000_vpn_switch (including) |
| Contivity | Nortel | 1500_vpn_switch (including) | 1500_vpn_switch (including) |
| Contivity | Nortel | 1600_secure_ip_services_gateway (including) | 1600_secure_ip_services_gateway (including) |
| Contivity | Nortel | 2000_vpn_switch (including) | 2000_vpn_switch (including) |
| Contivity | Nortel | 2500_vpn_switch (including) | 2500_vpn_switch (including) |
| Contivity | Nortel | 2600_secure_ip_services_gateway (including) | 2600_secure_ip_services_gateway (including) |
| Contivity | Nortel | 4000_vpn_switch (including) | 4000_vpn_switch (including) |
| Contivity | Nortel | 4500_secure_ip_services_gateway (including) | 4500_secure_ip_services_gateway (including) |
| Contivity | Nortel | 4600_secure_ip_services_gateway (including) | 4600_secure_ip_services_gateway (including) |
| Vpn_router_1010 | Nortel | * | * |
| Vpn_router_1050 | Nortel | * | * |
| Vpn_router_1100 | Nortel | * | * |
| Vpn_router_1700 | Nortel | * | * |
| Vpn_router_1740 | Nortel | * | * |
| Vpn_router_2700 | Nortel | * | * |
| Vpn_router_5000 | Nortel | * | * |
| Vpn_router_600 | Nortel | * | * |
References
- http://securitytracker.com/id?1014068
- http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/
- http://www.securityfocus.com/archive/1/399423
- http://www.securityfocus.com/bid/13792
- http://securitytracker.com/id?1014068
- http://www.nta-monitor.com/news/vpn-flaws/nortel/vpn-router-dos/
- http://www.securityfocus.com/archive/1/399423
- http://www.securityfocus.com/bid/13792