8 matches found
libssh2:ssh2_client_fuzzer: Heap-buffer-overflow in kex_agree_methods
Project: https://github.com/cmeister2/libssh2.git Detailed Report: https://oss-fuzz.com/testcase?key=5129964331991040 Project: libssh2 Fuzzing Engine: libFuzzer Fuzz Target: ssh2clientfuzzer Job Type: libfuzzerasanlibssh2 Platform Id: linux Crash Type: Heap-buffer-overflow READ 1 Crash Address:...
Denial Of Service (DoS)
libssh2 is vulnerable to denial of service DoS attacks and other attacks. kexagreemethods function in libssh2 reads incoming SSHMSGKEXINIT packet data without a proper range checking of length values, thereby allowing remote servers to cause a denial of service by using malicious SSHMSGKEXINIT...
libssh2: Using SSH_MSG_KEXINIT data unbounded
A flaw was found in the way the kexagreemethods function of libssh2 performed a key exchange when negotiating a new SSH session. A man-in-the-middle attacker could use a crafted SSHMSGKEXINIT packet to crash a connecting libssh2 client...
libssh2 kex_agree_methods function denial of service vulnerability
libssh2 is a C library that implements the SSH2 protocol. A security vulnerability in the libssh2 kexagreemethods function allows an attacker to crash an application via a specially crafted length value in the SSHMSGKEXINIT message...
Stack overflow
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
CVE-2015-1782
CVE-2015-1782 affects libssh2: the kex_agree_methods() function in libssh2 before 1.5.0 can crash a client or cause other unspecified impact when processing crafted length values in SSH_MSG_KEXINIT. Public advisories indicate a fix was released in libssh2 1.5.0 (and backports in various distribut...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...