Description
Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload.
References (6)
Core 6
Core References
Vendor Advisory third-party-advisory
x_refsource_auscert
http://www.auscert.org.au/render.html?it=4339
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/15669
Patch, Vendor Advisory third-party-advisory
x_refsource_iss
http://xforce.iss.net/xforce/alerts/id/181
Vendor Advisory third-party-advisory
government-resource
x_refsource_ciac
http://www.ciac.org/ciac/bulletins/o-206.shtml
Vendor Advisory x_refsource_confirm
http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11039
Scores
EPSS
0.0850
EPSS Percentile
92.5%
Details
Status
published
Products (7)
entrust/entrust_libkmp_isakmp_library
symantec/enterprise_firewall
7.0
symantec/enterprise_firewall
7.0.4 (2 CPE variants)
symantec/enterprise_firewall
8.0 (2 CPE variants)
symantec/gateway_security_5300
1.0
symantec/gateway_security_5400
2.0
symantec/velociraptor
1.5
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026