CVE-2005-4178
7.3 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.1%
Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
References
lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
matt.ucc.asn.au/dropbear/dropbear.html
secunia.com/advisories/18108
secunia.com/advisories/18109
secunia.com/advisories/18142
www.debian.org/security/2005/dsa-923
www.gentoo.org/security/en/glsa/glsa-200512-13.xml
www.securityfocus.com/bid/15923/
www.vupen.com/english/advisories/2005/2962
Related
7.3 High
AI Score
Confidence
Low
6.5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
71.1%