Lucene search
K

15 matches found

GithubExploit
GithubExploit
added 2024/07/02 2:51 a.m.1812 views

Exploit for Race Condition in Openbsd Openssh

OpenSSH CVE-2024-6387 Vulnerability Checker This Python script c...

9.3CVSS8.8AI score0.99506EPSS
Exploits68
RedhatCVE
RedhatCVE
added 2015/10/30 10:23 a.m.53 views

CVE-2008-4109

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service connection sl...

9.3CVSS8.1AI score0.44963EPSS
Exploits7References2
F5 Networks
F5 Networks
added 2013/10/10 12:0 a.m.143 views

SOL14742 - OpenSSH vulnerability CVE-2008-4109

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

9.3CVSS3.3AI score0.44963EPSS
Exploits7References5
Tenable Nessus
Tenable Nessus
added 2011/08/29 12:0 a.m.3638 views

SunSSH < 1.1.1 / 1.3 CBC Plaintext Disclosure

The version of SunSSH running on the remote host has an information disclosure vulnerability. A design flaw in the SSH specification could allow a man-in-the-middle attacker to recover up to 32 bits of plaintext from an SSH-protected connection in the standard configuration. An attacker could...

10CVSS7.1AI score0.76751EPSS
Exploits31References51
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.37 views

SLES10: Security update for OpenSSH

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openssh openssh-askpass More details may also be found by searching for the SuSE Enterprise Server 10 patch database located at...

5CVSS8.1AI score0.28601EPSS
Exploits6
OpenVAS
OpenVAS
added 2009/10/13 12:0 a.m.33 views

SLES10: Security update for OpenSSH

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openssh openssh-askpass More details may also be found by searching for the SuSE Enterprise Server 10 patch database linked in the references...

5CVSS8AI score0.28601EPSS
Exploits6References1
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.28 views

SLES9: Security update for OpenSSH

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openssh-askpass openssh For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 503618...

5CVSS8.1AI score0.28601EPSS
Exploits6
OpenVAS
OpenVAS
added 2009/10/10 12:0 a.m.38 views

SLES9: Security update for OpenSSH

The remote host is missing updates to packages that affect the security of your system. One or more of the following packages are affected: openssh-askpass openssh For more information, please visit the referenced security advisories. More details may also be found by searching for keyword 503618...

5CVSS8AI score0.28601EPSS
Exploits6References1
securityvulns
securityvulns
added 2008/10/03 12:0 a.m.130 views

[USN-649-1] OpenSSH vulnerabilities

=========================================================== Ubuntu Security Notice USN-649-1 October 01, 2008 openssh vulnerabilities CVE-2008-1657, CVE-2008-4109 =========================================================== A security issue affects the following Ubuntu releases: Ubuntu 6.06 LTS...

6.5CVSS0.2AI score0.28601EPSS
Exploits9
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.65 views

Debian Security Advisory DSA 1638-1 (openssh)

The remote host is missing an update to openssh announced via advisory DSA 1638-1. OpenVAS Vulnerability Test $Id: deb16381.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 1638-1 openssh Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

9.3CVSS8.2AI score0.44963EPSS
Exploits7
OpenVAS
OpenVAS
added 2008/09/24 12:0 a.m.36 views

Debian: Security Advisory (DSA-1638-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.1AI score0.44963EPSS
Exploits7References3
securityvulns
securityvulns
added 2008/09/20 12:0 a.m.154 views

[SECURITY] [DSA 1638-1] New openssh packages fix denial of service

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ Debian Security Advisory DSA-1638-1 [email protected] http://www.debian.org/security/ Florian Weimer September 16, 2008 http://www.debian.org/security/faq -...

9.3CVSS0.2AI score0.44963EPSS
Exploits7
CVE
CVE
added 2008/09/17 6:6 p.m.506 views

CVE-2008-4109

CVE-2008-4109 refers to a Debian OpenSSH patch that, prior to specific package versions (e.g., 4.3p2-9etch3, 4.6p1-1, and equivalents in SUSE), used non-async-signal-safe functions in the login-timeout signal handler. This can cause a denial of service (connection slot exhaustion) via multiple lo...

5CVSS7.8AI score0.28601EPSS
Exploits6References10Affected Software1
Vulnrichment
Vulnrichment
added 2008/09/17 6:6 p.m.54 views

CVE-2008-4109

A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service connection sl...

7AI score0.28601EPSS
Exploits6References10
Tenable Nessus
Tenable Nessus
added 2008/09/17 12:0 a.m.70 views

Debian DSA-1638-1 : openssh - denial of service

It has been discovered that the signal handler implementing the login timeout in Debian's version of the OpenSSH server uses functions which are not async-signal-safe, leading to a denial of service vulnerability CVE-2008-4109 . The problem was originally corrected in OpenSSH 4.4p1 CVE-2006-5051 ...

9.3CVSS6.8AI score0.44963EPSS
Exploits7References6
Rows per page
Query Builder