CVE-2011-0949

Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshdlock files from /tmp/, which allows remote attackers to cause a denial of service disk consumption by making many SSHv1 connections, aka Bug ID CSCtd64417...

Huawei Data Communication: Disable SSHv1

SSHv1 is disabled. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...

Fedora 26 : shellinabox (2017-1dc71e1acd)

Disable SSHv1 options. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. %NASLMINLEVEL 70300 C Tenab...

libssh and libssh2: Multiple vulnerabilities

Background libssh is a mulitplatform C library implementing the SSHv2 and SSHv1 protocol on client and server side. Description libssh and libssh2 both have a bits/bytes confusion bug and generate an abnormaly short ephemeral secret for the diffie-hellman-group1 and diffie-hellman-group14 key...

Nmap NSE 6.01: sshv1

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SSHtrix - Fastest Multithreaded SSHv1 and SSH1v2 login cracker

SSHtrix - Fastest Multithreaded SSHv1 and SSH1v2 login cracker sshtrix is a very fast multithreaded SSH login cracker. It supports SSHv1 and SSHv2.sshtrix was designed to automate rapid bruteforce attacks against SSH authentification screens. Unlike other public tools, the aim is to keep it...

SSHtrix - Fastest Multithreaded SSHv1 and SSH1v2 login cracker

SSHtrix - Fastest Multithreaded SSHv1 and SSH1v2 login cracker sshtrix is a very fast multithreaded SSH login cracker. It supports SSHv1 and SSHv2.sshtrix was designed to automate rapid bruteforce attacks against SSH authentification screens. Unlike other public tools, the aim is to keep it...

Nmap NSE net: sshv1

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshdlock files from /tmp/, which allows remote attackers to cause a denial of service disk consumption by making many SSHv1 connections, aka Bug ID CSCtd64417...

CVE-2011-0949

Cisco IOS XR Software SSHv1 denial of service vulnerability (CVE-2011-0949) affects 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1. The root cause is that sshd_lock files in /tmp are not properly removed after SSHv1 sessions, allowing remote attackers making many SSHv1 connections to exhaust /...

Cisco IOS XR SSHv1 '/tmp/ssh_lock'远程拒绝服务漏洞

Bugtraq ID: 47982 CVE ID：CVE-2011-0949 Cisco IOS是一款流行的Internet操作系统。Cisco IOS XR是Cisco IOS软件家族的一员，使用基于微内核分配操作系统架构。 Cisco IOS XR软件中SSH应用存在一个漏洞，当使用SSH版本1SSHv1协议时可导致拒绝服务攻击。漏洞会导致不能删除的sshdlock文件消耗所有/tmp文件系统中的可用空间。 当SSHv1连接连接到Cisco IOS...

Cisco Security Advisory: Cisco IOS XR Software SSHv1 Denial of Service Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Cisco Security Advisory: Cisco IOS XR Software SSHv1 Denial of Service Vulnerability Advisory ID: cisco-sa-20110525-iosxr-ssh Revision 1.0 For Public Release 2011 May 25 1600 UTC GMT...

Cisco IOS XR Software SSHv1 Denial of Service Vulnerability

...

Nmap NSE: SSHv1

This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SOL6881 - SSHv1 vulnerabilities CVE-2006-4924

This security advisory describes an OpenSSH version 1 vulnerability. When using version SSH version 1 protocol, remote attacks cause a denial of service attack when the sshd process is used in OpenSSH versions previous to version 4.4. This occurs when using an SSH packet that contains duplicate...

Juniper Networks NetScreen firewall contains a DoS vulnerability in the SSHv1 service

Overview A vulnerability in the SSHv1 service of NetScreen firewalls could allow an attacker to cause a denial-of-service condition. Description Juniper Networks NetScreen firewall products include a Secure Shell version 1 SSHv1 implementation called Secure Command Shell SCS. The SSHv1 service...

OpenSSH PAM challenge authentication failure

Overview There is a vulnerability in the challenge authentication code of the Portable OpenSSH server when using the SSHv1 protocol and Pluggable Authentication Modules PAM. This vulnerability could permit a remote attacker to log in to the system as any user, including potentially root, without...