Lucene search
+L

433 matches found

ubuntucve
ubuntucve
added 2017/03/27 5:59 p.m.28 views

CVE-2017-6542

The sshagentchanneldata function in PuTTY before 0.68 allows remote attackers to have unspecified impact via a large length value in an agent protocol message and leveraging the ability to connect to the Unix-domain socket representing the forwarded agent connection, which trigger a buffer overfl...

9.8CVSS7.2AI score0.21816EPSS
Exploits4References3
nessus
nessus
added 2017/03/20 12:0 a.m.28 views

openSUSE Security Update : putty (openSUSE-2017-354)

This update to putty 0.68 fixes the following security issue : - CVE-2017-6542: If SSH agent forwarding is enabled, local attackers that are also able to connect to the UNIX domain socket could have overwritten heap data boo1029256 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

9.8CVSS8.2AI score0.21816EPSS
Exploits4References2
nessus
nessus
added 2017/03/17 12:0 a.m.51 views

FreeBSD : PuTTY -- integer overflow permits memory overwrite by forwarded ssh-agent connections (9b973e97-0a99-11e7-ace7-080027ef73ec)

Simon G. Tatham reports : Many versions of PuTTY prior to 0.68 have a heap-corrupting integer overflow bug in the sshagentchanneldata function which processes messages sent by remote SSH clients to a forwarded agent connection. ... This bug is only exploitable at all if you have enabled SSH agent...

9.8CVSS8.3AI score0.21816EPSS
Exploits4References3
nessus
nessus
added 2017/02/01 12:0 a.m.77 views

openSUSE Security Update : openssh (openSUSE-2017-184)

This update for openssh fixes several issues. These security issues were fixed : - CVE-2016-8858: The kexinputkexinit function in kex.c allowed remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests bsc1005480. - CVE-2016-10012: The shared memo...

7.8CVSS7.2AI score0.37431EPSS
Exploits8References13
freebsd
freebsd
added 2017/01/29 12:0 a.m.31 views

PuTTY -- integer overflow permits memory overwrite by forwarded ssh-agent connections

Simon G. Tatham reports: Many versions of PuTTY prior to 0.68 have a heap-corrupting integer overflow bug in the sshagentchanneldata function which processes messages sent by remote SSH clients to a forwarded agent connection. ... This bug is only exploitable at all if you have enabled SSH agent...

9.8CVSS9.1AI score0.21816EPSS
Exploits4References1
freebsd
freebsd
added 2017/01/11 12:0 a.m.235 views

FreeBSD -- OpenSSH multiple vulnerabilities

Problem Description: The ssh-agent1 agent supports loading a PKCS11 module from outside a trusted whitelist. An attacker can request loading of a PKCS11 module across forwarded agent-socket. CVE-2016-10009 When privilege separation is disabled, forwarded Unix domain sockets would be created by...

7.5CVSS7.8AI score0.37431EPSS
Exploits6
nessus
nessus
added 2017/01/09 12:0 a.m.248 views

OpenSSH 7.x < 7.4 Multiple Vulnerabilities

Binary data 9855.prm...

7.8CVSS6.8AI score0.37431EPSS
Exploits9References6
prion
prion
added 2017/01/05 2:59 a.m.126 views

Design/Logic Flaw

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.5CVSS7.5AI score0.37431EPSS
Exploits4References20Affected Software1
attackerkb
attackerkb
added 2017/01/05 2:59 a.m.7 views

CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.5CVSS7.2AI score0.37431EPSS
Exploits4References24
cvelist
cvelist
added 2017/01/05 12:0 a.m.109 views

CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

8AI score0.37431EPSS
Exploits4References20
vulnrichment
vulnrichment
added 2017/01/05 12:0 a.m.5 views

CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.2AI score0.37431EPSS
Exploits4References20
osv
osv
added 2017/01/04 12:0 a.m.5 views

UBUNTU-CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.3CVSS7.4AI score0.37431EPSS
Exploits4References5
nessus
nessus
added 2016/12/27 12:0 a.m.12102 views

OpenSSH < 7.4 Multiple Vulnerabilities

According to its banner, the version of OpenSSH running on the remote host is prior to 7.4. It is, therefore, affected by multiple vulnerabilities : - A flaw exists in ssh-agent due to loading PKCS11 modules from paths that are outside a trusted whitelist. A local attacker can exploit this, by...

7.8CVSS7AI score0.37431EPSS
Exploits9References6
slackware
slackware
added 2016/12/24 1:35 a.m.72 views

[slackware-security] openssh

New openssh packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/openssh-7.4p1-i586-1slack14.2.txz: Upgraded. This is primarily a bugfix release, and also addresses...

7.8CVSS7.1AI score0.37431EPSS
Exploits8
exploitpack
exploitpack
added 2016/12/23 12:0 a.m.29 views

OpenSSH 7.4 - agent Protocol Arbitrary Library Loading

OpenSSH 7.4 - agent Protocol Arbitrary Library Loading Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=1009 The OpenSSH agent permits its clients to load PKCS11 providers using the commands SSHAGENTCADDSMARTCARDKEY and SSHAGENTCADDSMARTCARDKEYCONSTRAINED if OpenSSH was compiled...

0.2AI score
Exploits0
packetstorm
packetstorm
added 2016/12/23 12:0 a.m.4149 views

OpenSSH Arbitrary Library Loading

OpenSSH: agent protocol permits loading arbitrary libraries CVE-2016-10009 The OpenSSH agent permits its clients to load PKCS11 providers using the commands SSHAGENTCADDSMARTCARDKEY and SSHAGENTCADDSMARTCARDKEYCONSTRAINED if OpenSSH was compiled with the ENABLEPKCS11 flag normally enabled and the...

0.2AI score0.37431EPSS
Exploits4
myhack58
myhack58
added 2016/12/21 12:0 a.m.200 views

OpenSSH is now in the risk of vulnerabilities can cause remote code execution-vulnerability warning-the black bar safety net

Vulnerability number CVE-2016-10009 Vulnerability level In the risk Vulnerability OpenSSH 7.3 and the following version Vulnerability description The vulnerability appears the ssh-agent, this process by default does not start, only in a multi-host Free the password the login will only be used to...

2.2AI score0.37431EPSS
Exploits4
redhatcve
redhatcve
added 2016/12/20 7:47 a.m.86 views

CVE-2016-10009

It was found that ssh-agent could load PKCS11 modules from arbitrary paths. An attacker having control of the forwarded agent-socket on the server, and the ability to write to the filesystem of the client host, could use this flaw to execute arbitrary code with the privileges of the user running...

7.5CVSS3.5AI score0.37431EPSS
Exploits4References2
ptsecurity
ptsecurity
added 2016/11/24 12:0 a.m.13 views

PT-2016-3068 · Openssh +7 · Openssh +7

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 7.4 OpenSSH versions prior to 9.3p2 Description: The issue is related to an untrusted search path vulnerability in the ssh-agent component of OpenSSH, which can be exploited by remote attackers to execute arbitrary...

10CVSS7.5AI score0.99506EPSS
Exploits208References442
nessus
nessus
added 2015/12/02 12:0 a.m.232 views

CentOS 7 : openssh (CESA-2015:2088)

Updated openssh packages that fix multiple security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which...

8.5CVSS6.9AI score0.09302EPSS
Exploits1References4
Rows per page
Query Builder