Unrated severityNVD Advisory· Published Jan 26, 2005· Updated Apr 16, 2026

CVE-2005-0162

Description

Stack-based buffer overflow in the get_internal_addresses function in the pluto application for Openswan 1.x before 1.0.9, and Openswan 2.x before 2.3.0, when compiled with XAUTH and PAM enabled, allows remote authenticated attackers to execute arbitrary code.

Affected products

Xelerance/Openswan2 versions
cpe:2.3:a:openswan:openswan:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:openswan:openswan:*:*:*:*:*:*:*:*range: <=1.0.9
- cpe:2.3:a:xelerance:openswan:2.3.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.idefense.com/application/poi/displaynvdPatchVendor Advisory
www.openswan.org/support/vuln/IDEF0785/nvdPatchVendor Advisory
secunia.com/advisories/14038nvd
secunia.com/advisories/14062nvd
securitytracker.com/idnvd
www.osvdb.org/13195nvd
www.redhat.com/archives/fedora-announce-list/2005-January/msg00103.htmlnvd
www.securityfocus.com/bid/12377nvd
exchange.xforce.ibmcloud.com/vulnerabilities/19078nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000