2 matches found
CVE-2008-0097
CVE-2008-0097 stems from a format string vulnerability in the log function of Georgia SoftWorks SSH2 Server (GSW_SSHD) versions up to and including 7.01.0003. The flaw allows remote attackers to execute arbitrary code by providing format string specifiers in the username field, as illustrated by ...
CVE-2008-0096
The CVE-2008-0096 entry concerns Georgia SoftWorks SSH2 Server (GSW_SSHD) versions up to 7.01.0003. It describes multiple buffer overflows in the log function that can be triggered by (1) a long username or (2) a long password, allowing remote attackers to execute arbitrary code. The connected so...