8 matches found
CVE-2006-2407
creationtimestamp| type| source ---|---|--- 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16462 2010-05-09 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16461 2018-05-29 15:50:33+00:00| seen|...
FreeFTPd 1.0.10 Key Exchange Algorithm String Buffer Overflow
This module exploits a simple stack buffer overflow in FreeFTPd 1.0.10 This flaw is due to a buffer overflow error when handling a specially crafted key exchange algorithm string received from an SSH client. This module is based on MC's freesshdkeyexchange exploit. This module requires Metasploit...
FreeSSHd 1.0.9 Key Exchange Algorithm String Buffer Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'FreeSSHd 1.0...
FreeFTPd 1.0.10 Key Exchange Algorithm String Buffer Overflow
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'FreeFTPd...
freeSSHd Key Exchange Algorithm String Remote Overflow
The remote host is using freeSSHd, a free SSH server for Windows. The version of freeSSHd installed on the remote host does not validate the key exchange strings sent by a SSH client. This can result in a buffer overflow and possibly a compromise of the host if an unauthenticated attacker sends a...
FreeSSHd key exchange buffer overflow
Added: 05/17/2006 CVE: CVE-2006-2407 BID: 17958 OSVDB: 25463 Background freeSSHd is a free SSH server based on WeOnlyDo wodSSHServer. Problem wodSSHServer and its derivatives, including freeSSHd, are affected by a buffer overflow vulnerability in the key exchange algorithm. A remote attacker can...
CVE-2006-2407
The CVE-2006-2407 issue is a stack-based buffer overflow in FreeSSHd (including 1.0.9 and 1.3.3 DEMO) when processing a long key exchange algorithm string, enabling remote code execution. It also affects derivative products (FreeSSHd-based demos and FreeFTPd 1.0.10 as used in other packages). Pub...
CVE-2006-2407
Stack-based buffer overflow in 1 WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including 2 FreeSSHd 1.0.9 and 3 freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string...