VYPR
Unrated severityNVD Advisory· Published Jan 26, 2005· Updated Jun 16, 2026

CVE-2005-0162

CVE-2005-0162

Description

Stack-based buffer overflow in the get_internal_addresses function in the pluto application for Openswan 1.x before 1.0.9, and Openswan 2.x before 2.3.0, when compiled with XAUTH and PAM enabled, allows remote authenticated attackers to execute arbitrary code.

Affected products

3
  • cpe:2.3:a:openswan:openswan:*:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:openswan:openswan:*:*:*:*:*:*:*:*range: <=1.0.9
    • cpe:2.3:a:xelerance:openswan:2.3.0:*:*:*:*:*:*:*
    • (no CPE)range: 1.x < 1.0.9, 2.x < 2.3.0

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.