29 matches found
EulerOS Virtualization 2.13.1 : openssh (EulerOS-SA-2026-2382)
According to the versions of the openssh packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : OpenSSH before 10.3 mishandles the authorizedkeys principals option in uncommon scenarios involving a principals list in conjuncti...
[SECURITY] Fedora 44 Update: openssh-10.2p1-6.fc44
SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...
MiracleLinux 7 : openssh-6.6.1p1-23.el7 (AXSA:2016-037:01)
The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-037:01 advisory. SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide...
OPENSUSE-SU-2026:20000-1 Security update for salt
This update for salt fixes the following issues: Changes in salt: - Add minimumauthversion to enforce security CVE-2025-62349 - Backport security fixes for vendored tornado BDSA-2024-3438 BDSA-2024-3439 BDSA-2024-9026 - Junos module yaml loader fix CVE-2025-62348 - Require Python dependencies onl...
EUVD-2000-0571
Malware in sbrugna...
EUVD-2001-1456
Malware in sbrugna...
EUVD-2001-0360
Malware in sbrugna...
ROS-20250922-08
Twisted Web HTTP 1.1 server vulnerability in the twisted.web.http module of the Twisted networking framework is related to the HTTP request processing flaws. Exploitation of the vulnerability allows an attacker acting remotely to gain access to confidential data. remotely to gain access to...
The vulnerability in the transport.py component of the SSHv2 protocol library for Python Paramiko allows a attacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the transport.py component in the SSHv2 protocol library for Python Paramiko is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to gain access to confidential data, compromise its integrity, and cause service...
UBUNTU-CVE-2019-17069
PuTTY before 0.73 might allow remote SSH-1 servers to cause a denial of service by accessing freed memory locations via an SSH1MSGDISCONNECT message...
ssh-audit - SSH Server Auditing
ssh-audit is a tool for ssh server auditing. Features SSH1 and SSH2 protocol server support; grab banner, recognize device or software and operating system, detect compression; gather key-exchange, host-key, encryption and message authentication code algorithms; output algorithm information...
SSH Server Auditing: ssh-audit
ssh-audit is a tool for ssh server auditing Features SSH1 and SSH2 protocol server support; grab banner, recognize device or software and operating system, detect compression; gather key-exchange, host-key, encryption and message authentication code algorithms; output algorithm information...
libssh: bits/bytes confusion resulting in truncated Difffie-Hellman secret length
A type confusion issue was found in the way libssh generated ephemeral secrets for the diffie-hellman-group1 and diffie-hellman-group14 key exchange methods. This would cause an SSHv2 Diffie-Hellman handshake to use significantly less secure random parameters...
OpenSSH 7.0 Fixes Four Flaws
A new version of OpenSSH has been released, fixing four security vulnerabilities and a number of non-security related bugs. OpenSSH 7.0 includes patches for a use-after-free vulnerability and three other flaws, two of which only affect Portable OpenSSH. The maintainers of the software also gave...
Private Shell SSH Client 3.3 - Crash (PoC)
Private Shell SSH Client 3.3 - Crash PoC ''' Exploit title: privateshell SSH Client v.3.3 denial of service vulnerability Date: 27-5-2015 Vendor homepage: www.privateshell.com Software Link: http://www.privateshell.com/files/pshell.exe Version: 3.3 Author: 3unnym00n Details: -------- when doing t...
Dropbear SSH <= 0.34 Remote Root Exploit
No description provided by source. / Linux x86 Dropbear SSH = 0.34 remote root exploit coded by live You'll need a hacked ssh client to try this out. I included a patch to openssh-3.6.p1 somewhere below this comment. The point is: the buffer being exploited is too small25 bytes to hold our...
Juniper NetScreen VPN Client Detection
The remote host has the Juniper NetScreen VPN Client installed. C Tenable Network Security. Inc. include"compat.inc"; if description scriptid70120; scriptversion"1.10"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/02/06"; scriptxrefname:"IAVT", value:"0001-T-0914";...
OpenSSH X11UseLocalhost X11 Forwarding Port Hijacking
According to its banner, the version of SSH installed on the remote host is older than 5.1 and may allow a local user to hijack the X11 forwarding port. The application improperly sets the 'SOREUSEADDR' socket option when the 'X11UseLocalhost' configuration option is disabled. Note that most...
OpenSSH < 4.4 Multiple Vulnerabilities
According to its banner, the version of OpenSSH installed on the remote host is affected by multiple vulnerabilities : - A race condition exists that may allow an unauthenticated, remote attacker to crash the service or, on portable OpenSSH, possibly execute code on the affected host. Note that...
OpenSSH < 4.4 Multiple Vulnerabilities
Binary data 3751.prm...