CVE-2005-4178

2005-12-1221:03:00

Debian Security Bug Tracker

security-tracker.debian.org

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.003 Low

EPSS

Percentile

71.3%

JSON

Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.

OSVersionArchitecturePackageVersionFilename
Debian12alldropbear< 0.47-1dropbear_0.47-1_all.deb
Debian11alldropbear< 0.47-1dropbear_0.47-1_all.deb
Debian10alldropbear< 0.47-1dropbear_0.47-1_all.deb
Debian999alldropbear< 0.47-1dropbear_0.47-1_all.deb
Debian13alldropbear< 0.47-1dropbear_0.47-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	dropbear	< 0.47-1	dropbear_0.47-1_all.deb
Debian	11	all	dropbear	< 0.47-1	dropbear_0.47-1_all.deb
Debian	10	all	dropbear	< 0.47-1	dropbear_0.47-1_all.deb
Debian	999	all	dropbear	< 0.47-1	dropbear_0.47-1_all.deb
Debian	13	all	dropbear	< 0.47-1	dropbear_0.47-1_all.deb