5 matches found
Gentoo Security Advisory GLSA 200701-01 (denyhosts)
The remote host is missing updates announced in advisory GLSA 200701-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200701-01 (denyhosts)
The remote host is missing updates announced in advisory GLSA 200701-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Design/Logic Flaw
blockhosts.py in BlockHosts before 2.0.3 does not properly parse daemon log files, which allows remote attackers to add arbitrary deny entries to the /etc/hosts.allow file and cause a denial of service by adding arbitrary IP addresses to a daemon log file, as demonstrated by logging in through ss...
CVE-2006-6301
DenyHosts 2.5 does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a login name containing certain...
CVE-2006-6301
CVE-2006-6301 affects DenyHosts 2.5, which mishandles sshd log parsing. An attacker can remotely cause denial of service by injecting arbitrary IP addresses into /etc/hosts.deny through crafted log content, exploiting an inadequate regular expression to parse SSH login attempts. The vulnerability...