漏洞信息详情
Internet Key Exchange (IKE)协议设计漏洞
- CNNVD编号:CNNVD-200212-593
- 危害等级: 低危
- CVE编号: CVE-2002-1623
- 漏洞类型: 未知
- 发布时间: 2002-12-31
- 威胁类型: 远程
- 更新时间: 2006-01-03
- 厂 商: checkpoint
- 漏洞来源:
漏洞简介
Internet Key Exchange (IKE)协议设计在使用用于分享秘密认证的Aggressive模式时不能加密协商时的发起人或应答者身份。远程攻击者可以通过(1)在提供密码前监测响应或(2)嗅探判断有效用户名,该漏洞与防火墙-1 SecuRemote最初报告相同。
漏洞公告
参考网址
来源:US-CERT Vulnerability Note: VU#886601 名称: VU#886601 链接:http://www.kb.cert.org/vuls/id/886601 来源: XF 名称: fw1-ike-username-enumeration(10034) 链接:http://xforce.iss.net/xforce/xfdb/10034 来源: BID 名称: 5607 链接:http://www.securityfocus.com/bid/5607 来源: BUGTRAQ 名称: 20020903 SecuRemote usernames can be guessed or sniffed using IKE exchange 链接:http://www.securityfocus.com/archive/1/290202 来源: www.securiteam.com 链接:http://www.securiteam.com/securitynews/5TP040U8AW.HTML 来源: www.nta-monitor.com 链接:http://www.nta-monitor.com/news/checkpoint.htm 来源: www.checkpoint.com 链接:http://www.checkpoint.com/techsupport/alerts/ike.HTML 来源: BUGTRAQ 名称: 20020911 RE: SecuRemote usernames can be guessed or sniffed using IKE 链接:http://marc.theaimsgroup.com/?l=bugtraq&m=103176164729351&w=2 来源: BUGTRAQ 名称: 20020911 RE: SecuRemote usernames can be guessed or sniffed using IKE 链接:http://marc.theaimsgroup.com/?l=bugtraq&m=103176164729351&w=2 来源: BUGTRAQ 名称: 20020905 RE: SecuRemote usernames can be guessed or sniffed using IKE exchange 链接:http://marc.theaimsgroup.com/?l=bugtraq&m=103124812629621&w=2 来源: BUGTRAQ 名称: 20020905 RE: SecuRemote usernames can be guessed or sniffed using IKE exchange 链接:http://marc.theaimsgroup.com/?l=bugtraq&m=103124812629621&w=2 来源: FULLDISC 名称: 20020903 Check Point statement on use of IKE Aggressive Mode 链接:http://lists.grok.org.uk/pipermail/full-disclosure/2002-September/001223.HTML
受影响实体
- Checkpoint Vpn-1_firewall-1:4.1
- Checkpoint Vpn-1_firewall-1:4.0
补丁
暂无
评论