Short Name |
IKE:MALFORMED:2MANY-PAYLOAD |
---|---|
Severity |
Major |
Recommended |
No |
Category |
IKE |
Keywords |
cisco ike payload |
Release Date |
2004/02/02 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This protocol anomaly is an IKE packet that carries too many payloads. Cisco VPN clients are vulnerable to a remotely exploitable buffer overflow condition. Attackers can send an IKE packet with more than 57 valid payloads to overflow an internal buffer.
The Cisco VPN Client is prone to a remotely exploitable buffer overflow condition. It is possible to trigger this condition by sending malformed IKE packets to the client. The overflow is known to occur when the client attempts to process an IKE packet with more than 57 valid payloads. It may be possible to exploit this condition to execute arbitrary code with the privileges of the client. It is possible that exploitation of this vulnerability may affect availability of the client, resulting in a denial of service condition. This vulnerability affects versions of the client on all platforms.