Lucene search
K

13 matches found

GithubExploit
GithubExploit
added 2026/03/18 4:29 p.m.133 views

Exploit for Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Openssl

🔐 SSH Exploit Tool Educational Use Only 📌 Description Th...

7.8CVSS7AI score0.70721EPSS
Exploits7
F5 Networks
F5 Networks
added 2014/03/18 12:0 a.m.51 views

SOL15086 - OpenSSH vulnerability CVE-2008-1657

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy...

6.5CVSS3.7AI score0.02223EPSS
Exploits3References3
Tenable Nessus
Tenable Nessus
added 2011/10/04 12:0 a.m.273 views

OpenSSH < 4.9 'ForceCommand' Directive Bypass

According to its banner, the version of OpenSSH installed on the remote host is earlier than 4.9. It may allow a remote, authenticated user to bypass the 'sshdconfig' 'ForceCommand' directive by modifying the '.ssh/rc' session file. C Tenable, Inc. include"compat.inc"; if description scriptid4407...

6.5CVSS7.6AI score0.02223EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2011/08/29 12:0 a.m.3637 views

SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure

The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...

10CVSS7.1AI score0.76751EPSS
Exploits31References51
OpenVAS
OpenVAS
added 2010/05/12 12:0 a.m.37 views

Mac OS X 10.5.5 Update / Security Update 2008-006

The remote host is missing Mac OS X 10.5.5 Update / Security Update 2008-006. One or more of the following components are affected: ATS BIND ClamAV Directory Services Finder ImageIO Kernel libresolv Login Window mDNSResponder OpenSSH QuickDraw Manager Ruby SearchKit System Configuration System...

10CVSS7AI score0.95182EPSS
Exploits37
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.54 views

Mandriva Linux Security Advisory : openssh (MDVSA-2008:098)

A vulnerability in OpenSSH 4.4 through 4.8 allowed local attackers to bypass intended security restrictions enabling them to execute commands other than those specified by the ForceCommand directive, provided they are able to modify to /.ssh/rc CVE-2008-1657. The updated packages have been patche...

6.5CVSS7.5AI score0.02223EPSS
Exploits3References1
securityvulns
securityvulns
added 2008/10/03 12:0 a.m.129 views

[USN-649-1] OpenSSH vulnerabilities

=========================================================== Ubuntu Security Notice USN-649-1 October 01, 2008 openssh vulnerabilities CVE-2008-1657, CVE-2008-4109 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS...

6.5CVSS0.2AI score0.28601EPSS
Exploits9
Ubuntu
Ubuntu
added 2008/10/01 10:18 p.m.78 views

USN-649-1: OpenSSH vulnerabilities

It was discovered that the ForceCommand directive could be bypassed. If a local user created a malicious /.ssh/rc file, they could execute arbitrary commands as their user id. This only affected Ubuntu 7.10. CVE-2008-1657 USN-355-1 fixed vulnerabilities in OpenSSH. It was discovered that the fixe...

6.5CVSS8AI score0.28601EPSS
Exploits9
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.21 views

Gentoo Security Advisory GLSA 200804-03 (openssh)

The remote host is missing updates announced in advisory GLSA 200804-03. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.9CVSS6.4AI score0.02223EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.23 views

Gentoo Security Advisory GLSA 200804-03 (openssh)

The remote host is missing updates announced in advisory GLSA 200804-03. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

6.9CVSS0.5AI score0.02223EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2008/04/11 12:0 a.m.35 views

openSUSE 10 Security Update : openssh (openssh-5149)

A flaw in the X forwarding code of openssh allowed malicious users to steal the X access credentials of other users CVE-2008-1483. Due to another flaw users could bypass the option 'ForceCommand' CVE-2008-1657. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

6.9CVSS7.6AI score0.02223EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2008/04/11 12:0 a.m.39 views

GLSA-200804-03 : OpenSSH: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-200804-03 OpenSSH: Privilege escalation Two issues have been discovered in OpenSSH: Timo Juhani Lindfors discovered that OpenSSH sets the DISPLAY variable in SSH sessions using X11 forwarding even when it cannot bind the X11 serve...

6.9CVSS7.8AI score0.02223EPSS
Exploits4References3
CVE
CVE
added 2008/04/02 6:0 p.m.1091 views

CVE-2008-1657

OpenSSH vulnerability CVE-2008-1657 affects OpenSSH 4.4 up to versions before 4.9. The issue allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file. Severity is medium (CVSS 2.0 base score 6.5) with network access, low attack compl...

6.5CVSS6.5AI score0.02223EPSS
Exploits3References32Affected Software1
Rows per page
Query Builder