Lucene search

[email protected]CVE-2007-3157

HistoryJun 11, 2007 - 10:30 p.m.

CVE-2007-3157

2007-06-1122:30:00

[email protected]

web.nvd.nist.gov

cve-2007-3157

ipsecdrv.sys

safenet high assurance remote

denial of service

vulnerability

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.088 Low

EPSS

Percentile

94.6%

JSON

IPSecDrv.sys 10.4.0.12 in SafeNET High Assurance Remote 1.4.0 Build 12, and SoftRemote, allows remote attackers to cause a denial of service (infinite loop and system hang) via an invalid packet with certain bytes in an option header, possibly related to the IPv6 support for IPSec.

Affected configurations

NVD

Node

safenetsafenet_highassurance_remoteMatch1.4.0_build_12

safenetsoftremote_vpn_clientMatch1.4

CPENameOperatorVersion
safenet:safenet_highassurance_remotesafenet safenet highassurance remoteeq1.4.0_build_12
safenet:softremote_vpn_clientsafenet softremote vpn clienteq1.4

CPE	Name	Operator	Version
safenet:safenet_highassurance_remote	safenet safenet highassurance remote	eq	1.4.0_build_12
safenet:softremote_vpn_client	safenet softremote vpn client	eq	1.4

References

lists.grok.org.uk/pipermail/full-disclosure/2007-June/063859.html

osvdb.org/37137

secunia.com/advisories/25574

securityreason.com/securityalert/2803

www.digit-labs.org/files/exploits/safenet-dos.c

www.securityfocus.com/bid/24385

exchange.xforce.ibmcloud.com/vulnerabilities/34775

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.9 Medium

AI Score

Confidence

High

0.088 Low

EPSS

Percentile

94.6%

JSON

Related for CVE-2007-3157

nvd1 cvelist1 prion1