Denial of Service Vulnerability in Innominate mGuard Devices with Firmware 8.x before 8.1.7

Denial of Service Vulnerability in Innominate mGuard Devices with Firmware 8.x before 8.1.7

CVE-2015-3966 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:N/A:P

The IPsec SA establishment process on Innominate mGuard devices with firmware 8.x before 8.1.7 allows remote authenticated users to cause a denial of service (VPN service restart) by leveraging a peer relationship to send a crafted configuration with compression.

Learn more about our User Device Pen Test.