Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.28 views

openSUSE Security Update : dropbear (openSUSE-SU-2013:1616-1)

dropbear was updated to version 2013.60 to fix following bugs : - Fix 'make install' so that it doesn't always install to /bin and /sbin - Fix 'make install MULTI=1', installing manpages failed - Fix 'make install' when scp is included since it has no manpage - Make --disable-bundled-libtom work ...

5CVSS5.4AI score0.06424EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.44 views

openSUSE Security Update : dropbear (openSUSE-SU-2013:1696-1)

dropbear was updated to version 2013.60 to fix following bugs : - Fix 'make install' so that it doesn't always install to /bin and /sbin - Fix 'make install MULTI=1', installing manpages failed - Fix 'make install' when scp is included since it has no manpage - Make --disable-bundled-libtom work ...

5CVSS5.4AI score0.06424EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/10/29 12:0 a.m.24 views

Mandriva Linux Security Advisory : dropbear (MDVSA-2013:261)

Updated dropbear package fixes security vulnerability : Possible memory exhaustion denial of service due to the size of decompressed payloads in dropbear before 2013.59 CVE-2013-4421. Inconsistent delays in authorization failures could be used to disclose the existence of valid user accounts in...

5CVSS5.4AI score0.06424EPSS
Exploits0References3
OSV
OSV
added 2013/10/25 11:55 p.m.5 views

UBUNTU-CVE-2013-4434

Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames...

5CVSS5.8AI score0.05749EPSS
Exploits0References2
CVE
CVE
added 2013/10/25 11:0 p.m.92 views

CVE-2013-4434

Dropbear SSH Server before 2013.59 is affected by CVE-2013-4434: authentication error messages reveal valid usernames via different delay depending on account existence. Public docs confirm the issue and cite a patch release (2013.60) that fixes this and related CVE-2013-4421; openSUSE/Mandriva a...

5CVSS6.5AI score0.05749EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2013/10/25 11:0 p.m.26 views

CVE-2013-4434

Dropbear SSH Server before 2013.59 generates error messages for a failed logon attempt with different time delays depending on whether the user account exists, which allows remote attackers to discover valid usernames...

5CVSS6.4AI score0.05749EPSS
Exploits0
Mageia
Mageia
added 2013/10/25 9:10 p.m.30 views

Updated dropbear packages fix CVE-2013-4421

Updated dropbear package fixes security vulnerability: Possible memory exhaustion denial of service due to the size of decompressed payloads in dropbear before 2013.59 CVE-2013-4421. Inconsistent delays in authorization failures could be used to disclose the existence of valid user accounts in...

5CVSS2.9AI score0.06424EPSS
Exploits0References3
Rows per page
Query Builder