Back to search
CVE-2001-0376
Published: May 24, 2001
Modified: Aug 8, 2024
PUBLISHED
Description
SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre-shared key, and only support 48 byte keys. This allows a remote attacker to brute force attack the pre-shared keys with significantly less resources than if the full 128 byte IKE pre-shared keys were used.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20010327 SonicWall IKE pre-shared key length bug and security concern
mailing-list
x_refsource_BUGTRAQ
sonicwall-ike-shared-keys(6304)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now