Lucene search
K

116 matches found

Talos Blog
Talos Blog
added 2018/03/26 7:45 a.m.21 views

Forgot About Default Accounts? No Worries, GoScanSSH Didn’t

This blog post was authored by Edmund Brumaghin, Andrew Williams, and Alain Zidouemba. Executive Summary During a recent Incident Response IR engagement, Talos identified a new malware family that was being used to compromise SSH servers exposed to the internet. This malware, which we have named...

7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/08/12 12:0 a.m.22 views

FreeBSD : FreeBSD -- Incorrect error handling in PAM policy parser (6e8f9003-6007-11e6-a6c3-14dae9d210b8)

The OpenPAM library searches for policy definitions in several locations. While doing so, the absence of a policy file is a soft failure handled by searching in the next location while the presence of an invalid file is a hard failure handled by returning an error to the caller. The policy parser...

9.8CVSS7.3AI score0.02698EPSS
Exploits0References2
Cvelist
Cvelist
added 2014/08/20 10:0 a.m.21 views

CVE-2014-4749

IBM PowerVC 1.2.0 before FixPack3 does not properly use the knownhosts file, which allows man-in-the-middle attackers to spoof SSH servers via an arbitrary server key...

6.4AI score0.00856EPSS
Exploits0References2
securityvulns
securityvulns
added 2014/06/04 12:0 a.m.46 views

[oss-security] FreeBSD Security Advisory FreeBSD-SA-14:13.pam

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-14:13.pam Security Advisory The FreeBSD Project Topic: Incorrect error handling in PAM policy parser Category: contrib Module: pam Announced: 2014-06-03 Credits...

9.7AI score0.02698EPSS
Exploits0
FreeBSD
FreeBSD
added 2014/06/03 12:0 a.m.26 views

FreeBSD -- Incorrect error handling in PAM policy parser

Problem Description: The OpenPAM library searches for policy definitions in several locations. While doing so, the absence of a policy file is a soft failure handled by searching in the next location while the presence of an invalid file is a hard failure handled by returning an error to the...

9.8CVSS9.2AI score0.02698EPSS
Exploits0
NVD
NVD
added 2013/08/19 11:55 p.m.16 views

CVE-2013-4207

Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service crash via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum functionality, a differe...

4.3CVSS6.5AI score0.01834EPSS
Exploits1References6
NVD
NVD
added 2013/08/19 11:55 p.m.22 views

CVE-2013-4206

Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service crash and possibly trigger memory corruption or code execution via a crafted DSA signature, which is not properly handled when performing certain bit-shifting...

6.8CVSS7.3AI score0.02484EPSS
Exploits1References7
Prion
Prion
added 2013/08/19 11:55 p.m.20 views

Buffer overflow

Buffer overflow in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service crash via an invalid DSA signature that is not properly handled during computation of a modular inverse and triggers the overflow during a division by zero by the bignum functionality, a differe...

4.3CVSS6.9AI score0.02484EPSS
Exploits2References6Affected Software1
Debian CVE
Debian CVE
added 2013/08/19 11:0 p.m.24 views

CVE-2013-4206

Heap-based buffer underflow in the modmul function in sshbn.c in PuTTY before 0.63 allows remote SSH servers to cause a denial of service crash and possibly trigger memory corruption or code execution via a crafted DSA signature, which is not properly handled when performing certain bit-shifting...

6.8CVSS7.2AI score0.02484EPSS
Exploits1
ThreatPost
ThreatPost
added 2013/04/29 10:19 a.m.53 views

Attack Using Backdoored Apache Binaries to Lead to Blackhole Kit

There is a newly identified ongoing attack campaign in which attackers are using compromised Apache HTTP binaries to redirect users to malicious sites serving various flavors of malware, including the Blackhole exploit kit. Rather than going the traditional route of simply injecting malicious cod...

7.1AI score
Exploits0References3
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.15 views

Mandriva Update for mc MDKA-2007:092 (mc)

Check for the Version of mc OpenVAS Vulnerability Test Mandriva Update for mc MDKA-2007:092 mc Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

0.4AI score
Exploits0References2
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.10 views

Mandriva Update for mc MDKA-2007:092 (mc)

Check for the Version of mc OpenVAS Vulnerability Test Mandriva Update for mc MDKA-2007:092 mc Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms of t...

0.4AI score
Exploits0References2
Gentoo Linux
Gentoo Linux
added 2007/01/03 12:0 a.m.30 views

DenyHosts: Denial of service

Background DenyHosts is designed to monitor SSH servers for repeated failed login attempts. Description Tavis Ormandy of the Gentoo Linux Security Audit Team discovered that DenyHosts used an incomplete regular expression to parse failed login attempts. Impact A remote unauthenticated attacker ca...

5CVSS6.7AI score0.01871EPSS
Exploits1
OSV
OSV
added 2006/09/10 12:0 a.m.28 views

DSA-1173-1 openssl - cryptographic weakness

Bulletin has no description...

4.3CVSS7.2AI score0.04894EPSS
Exploits1
securityvulns
securityvulns
added 2002/12/17 12:0 a.m.47 views

CERT Advisory CA-2002-36 Multiple Vulnerabilities in SSH Implementations

-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2002-36 Multiple Vulnerabilities in SSH Implementations Original issue date: December 16, 2002 Last revised: -- Source: CERT/CC A complete revision history is at the end of this file. Systems Affected Secure shell SSH protocol implementations in...

10CVSS0.3AI score0.80233EPSS
Exploits6
securityvulns
securityvulns
added 2002/12/17 12:0 a.m.58 views

R7-0009: Vulnerabilities in SSH2 Implementations from Multiple Vendors

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Rapid 7, Inc. Security Advisory Visit http://www.rapid7.com/ to download NeXposetm, our advanced vulnerability scanner. Linux and Windows 2000 versions are available now! Rapid 7 Advisory R7-0009 Vulnerabilities in SSH2 Implementations from Multiple...

10CVSS0.7AI score0.80233EPSS
Exploits6
Rows per page
Query Builder