17 matches found
K16840: SSH vulnerability CVE-1999-1085
Security Advisory Description Description SSH 1.2.25, 1.2.23, and other versions, when used in in CBC Cipher Block Chaining or CFB Cipher Feedback 64 bits modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext...
Detecting Embedded Content in OOXML Documents
On Advanced Practices, we are always looking for new ways to find malicious activity and track adversaries over time. Today weāre sharing a technique we use to detect and cluster Microsoft Office documentsāspecifically those in the Office Open XML OOXML file format. Additionally, weāre releasing ...
Hash-Identifier - Software To Identify The Different Types Of Hashes Used To Encrypt Data And Especially Passwords
Software to identify the different types of hashes used to encrypt data and especially passwords. Encryption formats supported: ADLER-32 CRC-32 CRC-32B CRC-16 CRC-16-CCITT DESUnix FCS-16 GHash-32-3 GHash-32-5 GOST R 34.11-94 Haval-160 Haval-192 110080 ,Haval-224 114080 ,Haval-256 Lineage II C4...
SSH 1.2.x CRC-32 Compensation Attack Detector Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2347/info Secure Shell, or SSH, is an encrypted remote access protocol. SSH or code based on SSH is used by many systems all over the world and in a wide variety of commercial applications. An integer-overflow bug in the...
Debian Security Advisory DSA 086-1 (ssh-nonfree, ssh-socks)
The remote host is missing an update to ssh-nonfree, ssh-socks announced via advisory DSA 086-1. OpenVAS Vulnerability Test $Id: deb0861.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 086-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
Debian Security Advisory DSA 086-1 (ssh-nonfree, ssh-socks)
The remote host is missing an update to ssh-nonfree, ssh-socks announced via advisory DSA 086-1. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
OpenSSH 4.3 p1 - Duplicated Block Remote Denial of Service
OpenSSH 4.3 p1 - Duplicated Block Remote Denial of Service !/bin/bash OpenSSH CRC compensation attack detection DoS PoC. Tavis Ormandy Yes, I really did implement crc-32 in bash. usage: script victim hostname hostname=$1:-localhost port=$2:-22 where the fifo is created to communicate with netcat...
OpenSSH <= 4.3 p1 (Duplicated Block) Remote Denial of Service Exploit
No description provided by source. !/bin/bash OpenSSH CRC compensation attack detection DoS PoC. Tavis Ormandy [email protected] Yes, I really did implement crc-32 in bash. usage: script hostname victim hostname hostname=$1:-localhost port=$2:-22 where the fifo is created to communicate with netc...
Debian DSA-086-1 : ssh-nonfree - remote root exploit
We have received reports that the 'SSH CRC-32 compensation attack detector vulnerability' is being actively exploited. This is the same integer type error previously corrected for OpenSSH in DSA-027-1. OpenSSH the Debian ssh package was fixed at that time, but ssh-nonfree and ssh-socks were not...
SSH1 CRC-32 detect_attack Function Overflow
Binary data 1980.prm...
CVE-1999-1085
The CVE-1999-1085 issue affects SSH1 protocol implementations (notably OpenSSH and SSH1-supporting SSH stacks) in CBC or CFB mode. A CRC-32 checksum weakness enables a known-plaintext attack to insert arbitrary data into an existing SSH stream between client and server, potentially allowing an at...
CVE-2001-0144
Technical details about CVE-2001-0144 are not provided in the connected documents. The Initial Description notes an SSH1 CRC-32 overflow issue, but no vendor/version/exploit data is supplied here. Monitor for updates and disclose when more info becomes public.
CVE-2001-0144
CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow...
PT-2001-1377 Ā· Core SdiĀ +1 Ā· Core Sdi Ssh1Ā +1
Name of the Vulnerable Software and Affected Versions: CORE SDI SSH1 affected versions not specified Description: The issue allows remote attackers to execute arbitrary commands on an SSH server or client via an integer overflow in the CRC-32 compensation attack detector. Recommendations: At the...
[CORE SDI ADVISORY] SSH1 CRC-32 compensation attack detector vulnerability
CORE SDI http://www.core-sdi.com SSH1 CRC-32 compensation attack detector vulnerability Date Published: 2001-02-08 Advisory ID: CORE-20010207 Bugtraq ID: 2347 CVE CAN: CAN-2001-0144 Title: SSH1 CRC-32 compensation attack detector vulnerability Class: Boundary Error Condition Remotely Exploitable:...
SSH CRC-32 Compensation Attack Remote Overflow
The remote host is running a version of SSH that is older than version 1.2.32, or a version of OpenSSH that is older than 2.3.0. The remote version of this software is vulnerable to a flaw known as a 'CRC-32 compensation attack' that could allow an attacker to gain a root shell on this host. C...
CVE-1999-1085
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC Cipher Block Chaining or CFB Cipher Feedback 64 bits modes, allows remote attackers to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and computing a valid CRC-32 checksum...