CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0376

SonicWALL Tele2 and SOHO firewalls with 6.0.0.0 firmware using IPSEC with IKE pre-shared keys do not allow for the use of full 128 byte IKE pre-shared keys, which is the intended design of the IKE pre-shared key, and only support 48 byte keys. This allows a remote attacker to brute force attack the pre-shared keys with significantly less resources than if the full 128 byte IKE pre-shared keys were used.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 61.7%

CVSS Severity

CVSS v2 Score 7.5

References

http://archives.neohapsis.com/archives/bugtraq/2001-03/0403.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/6304
http://archives.neohapsis.com/archives/bugtraq/2001-03/0403.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/6304

Products affected by CVE-2001-0376

Sonicwall » Soho2 » Version: 6.0.0

cpe:2.3:h:sonicwall:soho2:6.0.0
Sonicwall » Tele2 » Version: 6.0.0

cpe:2.3:h:sonicwall:tele2:6.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0376

Products

Pricing

Contact Us