15 matches found
EUVD-2015-1909
Malware in sbrugna...
EUVD-2006-2422
Malware in sbrugna...
K000148693: libssh2 vulnerability CVE-2015-1782
Security Advisory Description The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet. CVE-2015-1782 Impact There is no impact; F5 products are not affected ...
Denial Of Service (DoS)
libssh2 is vulnerable to denial of service DoS attacks and other attacks. kexagreemethods function in libssh2 reads incoming SSHMSGKEXINIT packet data without a proper range checking of length values, thereby allowing remote servers to cause a denial of service by using malicious SSHMSGKEXINIT...
libssh2 security and bug fix update
1.4.3-10 - check length of data extracted from the SSHMSGKEXINIT packet CVE-2015-1782 1.4.3-9 - curl consumes too much memory during scp download 1080459 - prevent a not-connected agent from closing STDIN 1147717...
SuSE 11.3 Security Update : libssh2_org (SAT Patch Number 10426)
The ssh client library libssh2org was updated to fix a security issue : - A malicious server could send a crafted SSHMSGKEXINIT packet, that could lead to a buffer overread and to a crash of the application using libssh2org. CVE-2015-1782 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
[SECURITY] [DSA 3182-1] libssh2 security update
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-3182-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso March 11, 2015 http://www.debian.org/security/faq -...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
Stack overflow
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
CVE-2015-1782
The kexagreemethods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service crash or have other unspecified impact via crafted length values in an SSHMSGKEXINIT packet...
Debian DSA-3182-1 : libssh2 - security update
Mariusz Ziulek reported that libssh2, a SSH2 client-side library, was reading and using the SSHMSGKEXINIT packet without doing sufficient range checks when negotiating a new SSH session with a remote server. A malicious attacker could man in the middle a real server and cause a client using the...
Stack overflow
Stack-based buffer overflow in Pragma FortressSSH 4.0.7.20 allows remote attackers to execute arbitrary code via long SSHMSGKEXINIT messages, which may cause an overflow when being logged. NOTE: the provenance of this information is unknown; the details are obtained solely from third party...
FortressSSH < 0.47 SSH_MSG_KEXINIT Logging Remote Overflow
Binary data 3620.prm...