CERT/CC Vulnerability Note VU#857035

Overview

Internet Key Exchange v1 main mode is vulnerable to offline dictionary or brute force attacks.

Description

The Internet Key Exchange v1 main mode is vulnerable to offline dictionary or brute force attacks. (CVE-2018-5389)

It is well known, that the aggressive mode of IKEv1 PSK is vulnerable to offline dictionary or brute force attacks. For the main mode however, only an online attack against PSK authentication was thought to be feasible.

Impact

An attacker may be able to recover a weak Pre-Shared Key.

Solution

Use Secure Passwords
Use cryptographically secure PSK values that resist brute force or dictionary attacks.

As mentioned in USENIX '18 presentation

To counter these attacks, both entry points must be closed: Only high entropy PSKs should be used, and both PKE and RPKE modes should be deactivated in all IKE devices. It is not sufficient to configure key sep- aration on the sender side. All receivers must also be informed about this key separation – novel solutions are required to achieve this task.

Acknowledgements

Thanks to Martin Grothe, Joerg Schwenk, and Dennis Felsch for reporting this vulnerability.

This document was written by Trent Novelly.

Vendor Information

857035

Filter by status:

Filter by content: Additional information available

Sort by:

Expand all

NETGEAR Not Affected

F5 Networks Unknown

3com Inc. (Inactive) Unknown

ACCESS Unknown

Actiontec Unknown

ADTRAN Unknown

aep NETWORKS (Inactive) Unknown

AirWatch Unknown

Alcatel-Lucent Enterprise Unknown

Amazon Unknown

Android Open Source Project Unknown

Appgate Network Security (Inactive) Unknown

Apple Unknown

Arch Linux Unknown

Arista Networks Unknown

ARRIS Unknown

Aruba Networks Unknown

ASP Linux (Inactive) Unknown

ASUSTeK Computer Inc. Unknown

AT&T Unknown

Avaya Unknown

AVM GmbH Unknown

Belkin Inc. Unknown

BlackBerry Unknown

Blackberry QNX Unknown

BlueCat Networks Inc. Unknown

Broadcom Unknown

Brocade Communication Systems Unknown

Cambium Networks Unknown

Check Point Unknown

Cisco Unknown

Command Software Systems (Inactive) Unknown

CoreOS Unknown

Debian GNU/Linux Unknown

Dell Unknown

Dell EMC Unknown

DesktopBSD Unknown

Deutsche Telekom Unknown

Devicescape Unknown

Digi International Unknown

D-Link Systems Inc. Unknown

dnsmasq Unknown

DragonFly BSD Project Unknown

eero Unknown

EfficientIP Unknown

Espressif Systems Unknown

Extreme Networks Unknown

Fedora Project Unknown

Force10 Networks Unknown

FreeS/WAN (Inactive) Unknown

F-Secure Corporation Unknown

Fujitsu Europe Unknown

Geexbox Unknown

Gentoo Linux Unknown

GNU glibc Unknown

Google Unknown

HardenedBSD Unknown

Hitachi Unknown

Honeywell Unknown

HP Inc. Unknown

HTC Unknown

Huawei Unknown

IBM Unknown

IBM Corporation (zseries) Unknown

IBM eServer Unknown

Infoblox Unknown

InfoExpress Inc. Unknown

Intel Unknown

Internet Systems Consortium Unknown

Internet Systems Consortium - DHCP Unknown

Interniche Technologies inc. (Inactive) Unknown

Intoto (Inactive) Unknown

Joyent Unknown

Juniper Networks Unknown

KAME Project Unknown

Lancope Unknown

Lantronix Unknown

Lenovo Unknown

Linksys Unknown

m0n0wall Unknown

Marvell Semiconductor Unknown

McAfee Unknown

MediaTek Unknown

Metaswitch Networks Unknown

Microchip Technology Unknown

Micro Focus Unknown

Microsoft Unknown

MikroTik Unknown

Miredo Unknown

Mitel Networks Unknown

NEC Corporation Unknown

NetBSD Unknown

NETSCOUT Unknown

netsnmp Unknown

Nokia Unknown

Nominum Unknown

Novell Unknown

OmniTI (Inactive) Unknown

OpenBSD Unknown

OpenBSD IPsec Unknown

OpenConnect Ltd Unknown

OpenDNS Unknown

Openwall GNU/*/Linux Unknown

Oracle Corporation Unknown

Peplink Unknown

pfSense Unknown

Philips Electronics Unknown

PowerDNS Unknown

Pulse Secure Unknown

QLogic Unknown

Quagga Unknown

Qualcomm Unknown

Quantenna Communications Unknown

Red Hat Unknown

Roku Unknown

Ruckus Wireless Unknown

Samsung Mobile Unknown

Secure64 Software Corporation Unknown

Sierra Wireless Unknown

Slackware Linux Inc. Unknown

Snort Unknown

Sonos Unknown

Sony Unknown

Sourcefire Unknown

strongSwan Unknown

SUSE Linux Unknown

Symantec Unknown

Synology Unknown

TippingPoint Technologies Inc. Unknown

Toshiba Commerce Solutions Unknown

TP-LINK Unknown

TrueOS Unknown

Turbolinux Unknown

Ubiquiti Unknown

Ubuntu Unknown

Unisys Corporation Unknown

Vantiva Unknown

VMware Unknown

Watchguard Unknown

Wind River Unknown

Zebra Technologies Unknown

Zyxel Unknown

View all 142 vendors View less vendors

CVSS Metrics

Group	Score	Vector
Base	8.8	AV:N/AC:M/Au:N/C:C/I:C/A:N
Temporal	7.9	E:POC/RL:U/RC:--
Environmental	7.9	CDP:ND/TD:ND/CR:ND/IR:ND/AR:ND

References

Other Information

CVE IDs:	CVE-2018-5389
API URL:	VINCE JSON \| CSAF
Date Public:	2018-08-14
Date First Published:	2018-08-14
Date Last Updated:	2024-07-15 14:51 UTC
Document Revision:	18

Software Engineering Institute

CERT Coordination Center

IKEv1 Main Mode vulnerable to brute force attacks

Vulnerability Note VU#857035