IKE: Too Many Payloads
This protocol anomaly is an IKE packet that carries too many payloads. Cisco VPN clients are vulnerable to a remotely exploitable buffer overflow condition. Attackers can send an IKE packet with more than 57 valid payloads to overflow an internal buffer.
Extended Description
The Cisco VPN Client is prone to a remotely exploitable buffer overflow condition. It is possible to trigger this condition by sending malformed IKE packets to the client. The overflow is known to occur when the client attempts to process an IKE packet with more than 57 valid payloads. It may be possible to exploit this condition to execute arbitrary code with the privileges of the client. It is possible that exploitation of this vulnerability may affect availability of the client, resulting in a denial of service condition. This vulnerability affects versions of the client on all platforms.
Affected Products
Cisco vpn_client_for_solaris
References
BugTraq: 5443
CVE: CVE-2002-0852
URL: http://www.kb.cert.org/vuls/id/287771 http://www.securityfocus.com/bid/5441 http://www.ietf.org/rfc/rfc2409.txt
Short Name
IKE:MALFORMED:2MANY-PAYLOAD
Severity
Major
Recommended
False
Recommended Action
None
Category
IKE
Keywords
CVE-2002-0852 bid:5443 cisco ike payload
Release Date
02/02/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Cisco
CVSS Score
5.0