Denial of Service Vulnerability in Novell Bordermanager VPN
CVE-2004-1457

Currently unrated

Key Information:

Vendor: Novell
Status: Bordermanager
Vendor: CVE Published:; 31 December 2004

Summary

The Virtual Private Network feature in Novell Bordermanager 3.8 is vulnerable to a denial of service attack. Remote attackers can exploit this by sending a malformed Internet Key Exchange (IKE) packet, resulting in an abnormal termination of the service (ABEND) in the IKE.NLM module. This vulnerability poses a significant risk to the integrity and availability of the network services provided by Bordermanager.

References

http://secunia.com/advisories/12067/

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/16697

vdb-entryx_refsource_XF

http://www.kb.cert.org/vuls/id/432097

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability Reserved
Feb 13, 2005
Vulnerability published
Dec 31, 2004