CVE-2007-1063

The SSH server in Cisco Unified IP Phone 7906G, 7911G, 7941G, 7961G, 7970G, and 7971G, with firmware 8.04SR1 and earlier, uses a hard-coded username and password, which allows remote attackers to access the device...

SSH Tectia Windows特定路径特权提升漏洞

SSH Tectia基于SSH技术，集中管理情况下提供 安全的系统管理，安全的文件传输，安全的程序之间的连接。 Windows版本下的SSH Tectia产品在子进程执行中处理路径名存在漏洞，本地攻击者可以利用漏洞提升特权。 如果本地用户允许建立系统盘ROOT目录中或者"Program Files"文件夹或其子目录中建立文件，就可能放置恶意程序代替正确的SSH Tectia子组件，结果导致以高权限执行任意程序。 SSH Communications Security Tectia Server 5.0.1 SSH Communications Security Tectia Server...

FortressSSH SSH_MSG_KEXINIT Logging Remote Overflow

The remote host is running FortressSSH, an enterprise-class SSH server for Windows. According to its banner, the installed version of this software reportedly contains a buffer overflow vulnerability involving a boundary error in the logging of contents of 'SSHMSGKEXINIT' messages. An...

freeSSHd Key Exchange Algorithm String Remote Overflow

The remote host is using freeSSHd, a free SSH server for Windows. The version of freeSSHd installed on the remote host does not validate the key exchange strings sent by a SSH client. This can result in a buffer overflow and possibly a compromise of the host if an unauthenticated attacker sends a...

FreeSSHd key exchange buffer overflow

Added: 05/17/2006 CVE: CVE-2006-2407 BID: 17958 OSVDB: 25463 Background freeSSHd is a free SSH server based on WeOnlyDo wodSSHServer. Problem wodSSHServer and its derivatives, including freeSSHd, are affected by a buffer overflow vulnerability in the key exchange algorithm. A remote attacker can...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

CVE-2006-1206

CVE-2006-1206 affects Dropbear SSH server 0.47 and earlier. The issue allows remote attackers to cause a denial of service by exhausting connection slots (MAX_UNAUTH_CLIENTS = 30) with a high rate of connection attempts. Impact is partial availability. Documented in multiple sources (NVD SUSE OSV...

CVE-2006-1206

Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service connection slot exhaustion via a large number of connection attempts that exceeds the MAXUNAUTHCLIENTS defined value...

Dropbear SSH Authorization-pending Connection Saturation DoS

The remote host is running Dropbear, a small, open source SSH server. The version of Dropbear installed on the remote host, by default, has a limit of 30 connections in the authorization-pending state; subsequent connections are closed immediately. This issue can be exploited trivially by an...

Dropbear SSH Server < 0.48.0 DoS

Binary data 3466.prm...

Code injection

OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM authentication, which allows remote attackers to cause a denial of service client connection refusal by connecting multiple times to the SSH server, waiting for the...

CVE-2006-0705

CVE-2006-0705 is a format-string vulnerability in SFTP/SSH logging code across multiple servers (e.g., SSH Secure Shell Server variants, and related SFTP servers). The flaw affects the handling of filenames in logs, enabling a remote authenticated user to potentially execute arbitrary commands vi...

AttachmateWRQ Reflection for Secure IT Server SFTP Format String

The remote host is running AttachmateWRQ Reflection for Secure IT Server / F-Secure SSH Server, a commercial SSH server. According to its banner, the installed version of this software contains a format string vulnerability in its sftp subsystem. A remote, authenticated attacker may be able to...

Multiple vendor SFTP logging format string vulnerability

Overview A logging function used by multiple vendors' SFTP servers contains a format string vulnerability, which may allow an authorized remote attacker to execute arbitrary code or cause a denial of service. Description SFTP SFTP Secure FTP is a file transfer application that uses SSH for...

lsh SSH server file descriptor leak

Random generator's seed file is not closed before executing command processor...

Ubuntu 4.10 / 5.04 : openssh vulnerability (USN-209-1)

An information disclosure vulnerability has been found in the SSH server. When the GSSAPIAuthentication option was enabled, the SSH server could send GSSAPI credentials even to users who attempted to log in with a method other than GSSAPI. This could inadvertently expose these credentials to an...

GLSA-200512-13 : Dropbear: Privilege escalation

The remote host is affected by the vulnerability described in GLSA-200512-13 Dropbear: Privilege escalation Under certain conditions Dropbear could fail to allocate a sufficient amount of memory, possibly resulting in a buffer overflow. Impact : By sending specially crafted data to the server,...

Dropbear: Privilege escalation

Background Dropbear is an SSH server and client with a small memory footprint. Description Under certain conditions Dropbear could fail to allocate a sufficient amount of memory, possibly resulting in a buffer overflow. Impact By sending specially crafted data to the server, authenticated users...