Tectia SSH USERAUTH Change Request Password Reset Vulnerability

1976-01-01T00:00:00
ID MSF:EXPLOIT/UNIX/SSH/TECTIA_PASSWD_CHANGEREQ
Type metasploit
Reporter Rapid7
Modified 1976-01-01T00:00:00

Description

This module exploits a vulnerability in Tectia SSH server for Unix-based platforms. The bug is caused by a SSH2_MSG_USERAUTH_PASSWD_CHANGEREQ request before password authentication, allowing any remote user to bypass the login routine, and then gain access as root.