Lucene search
K

8 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:49 p.m.316 views

K15504: OpenSSH vulnerability CVE-2014-1692

Security Advisory Description The hashbuffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service memory corruption or have unspecifie...

7.5CVSS7.1AI score0.04587EPSS
Exploits1
securityvulns
securityvulns
added 2015/09/14 12:0 a.m.194 views

[security bulletin] HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple Vulnerabilities

Note: the current version of the following document is available here: https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/ docDisplay?docId=emrna-c04774019 SUPPORT COMMUNICATION - SECURITY BULLETIN Document ID: c04774019 Version: 1 HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple...

10CVSS0.2AI score0.9994EPSS
Exploits45
F5 Networks
F5 Networks
added 2014/08/13 12:0 a.m.92 views

SOL15504 - OpenSSH vulnerability CVE-2014-1692

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

7.5CVSS2.5AI score0.04587EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2014/04/09 12:0 a.m.249 views

OpenSSH 'schnorr.c' Remote Memory Corruption Vulnerability

OpenSSH is prone to a remote memory-corruption vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:openssh";...

7.5CVSS5.8AI score0.04587EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2014/03/18 12:0 a.m.1172 views

OpenSSH < 6.6 Multiple Vulnerabilities

According to its banner, the version of OpenSSH running on the remote host is prior to 6.6. It is, therefore, affected by the following vulnerabilities : - A flaw exists due to a failure to initialize certain data structures when makefile.inc is modified to enable the J-PAKE protocol. An...

7.5CVSS7.1AI score0.04751EPSS
Exploits2References4
seebug.org
seebug.org
added 2014/02/14 12:0 a.m.1554 views

OpenSSH 'schnorr.c'远程内存破坏漏洞

BUGTRAQ ID: 65230 CVECAN ID: CVE-2014-1692 OpenSSH是SSH协议的开源实现。 OpenSSH 6.4版本及之前版本,如果Makefile.inc修改为启用J-PAKE协议,schnorr.c内的hashbuffer函数就不会初始化某些数据结构,这可使远程攻击者造成拒绝服务(内存破坏)。 0 OpenSSH OpenSSH 6.4 厂商补丁: OpenSSH ------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.openssh.com/...

7.5CVSS5.6AI score0.04587EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2014/01/29 4:2 p.m.87 views

CVE-2014-1692

The hashbuffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not initialize certain data structures, which might allow remote attackers to cause a denial of service memory corruption or have unspecified other impact via vectors tha...

7.5CVSS6.8AI score0.04587EPSS
Exploits1References5
CVE
CVE
added 2014/01/29 3:0 p.m.2793 views

CVE-2014-1692

CVE-2014-1692 affects OpenSSH up to version 6.4 when Makefile.inc enables J-PAKE; the hash_buffer function in schnorr.c may not initialize certain data structures, enabling remote attackers to trigger a memory corruption denial of service (and potentially other impact). The provided documents do ...

7.5CVSS5.3AI score0.04587EPSS
Exploits1References11Affected Software1
Rows per page
Query Builder