Back to search
CVE-2002-1623
Published: Mar 26, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
The design of the Internet Key Exchange (IKE) protocol, when using Aggressive Mode for shared secret authentication, does not encrypt initiator or responder identities during negotiation, which may allow remote attackers to determine valid usernames by (1) monitoring responses before the password is supplied or (2) sniffing, as originally reported for FireWall-1 SecuRemote.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20020903 Check Point statement on use of IKE Aggressive Mode
mailing-list
x_refsource_FULLDISC
20020911 RE: SecuRemote usernames can be guessed or sniffed using IKE
mailing-list
x_refsource_BUGTRAQ
5607
vdb-entry
x_refsource_BID
VU#886601
third-party-advisory
x_refsource_CERT-VN
http://www.nta-monitor.com/news/checkpoint.htm
x_refsource_MISC
http://www.checkpoint.com/techsupport/alerts/ike.html
x_refsource_CONFIRM
20020903 SecuRemote usernames can be guessed or sniffed using IKE exchange
mailing-list
x_refsource_BUGTRAQ
20020905 RE: SecuRemote usernames can be guessed or sniffed using IKE exchange
mailing-list
x_refsource_BUGTRAQ
fw1-ike-username-enumeration(10034)
vdb-entry
x_refsource_XF
http://www.securiteam.com/securitynews/5TP040U8AW.html
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now