Unrated severityNVD Advisory· Published Jul 16, 2007· Updated Apr 23, 2026

CVE-2007-3805

Description

The IKE implementation in Clavister CorePlus before 8.80.03, and 8.80.00, does not properly validate certificates during IKE negotiation, which allows remote attackers to cause a denial of service (gateway stop) via certain certificates.

Affected products

Clavister/Clavister Coreplus2 versions
cpe:2.3:a:clavister:clavister_coreplus:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:clavister:clavister_coreplus:*:*:*:*:*:*:*:*range: <=8.80.03
- cpe:2.3:a:clavister:clavister_coreplus:8.81.00:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/25957nvdPatchVendor Advisory
osvdb.org/37972nvd
www.clavister.com/releasenotes/CorePlus_Release_Notes_8_80_04.pdfnvd
www.clavister.com/releasenotes/CorePlus_Release_Notes_8_81_01.pdfnvd
exchange.xforce.ibmcloud.com/vulnerabilities/35370nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000