Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61450
HistoryFeb 14, 2014 - 12:00 a.m.

OpenSSH 'schnorr.c'远程内存破坏漏洞

2014-02-1400:00:00
Root
www.seebug.org
1380

0.043 Low

EPSS

Percentile

91.3%

JSON

BUGTRAQ ID: 65230
CVE(CAN) ID: CVE-2014-1692

OpenSSH是SSH协议的开源实现。

OpenSSH 6.4版本及之前版本,如果Makefile.inc修改为启用J-PAKE协议,schnorr.c内的hash_buffer函数就不会初始化某些数据结构,这可使远程攻击者造成拒绝服务(内存破坏)。
0
OpenSSH OpenSSH < 6.4
厂商补丁:

OpenSSH

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.openssh.com/

Related

f5 2
ubuntucve 1
cve 1
openvas 1
nessus 3
prion 1
debiancve 1
symantec 1
rosalinux 1
securityvulns 1
f5
f5
SOL15504 - OpenSSH vulnerability CVE-2014-1692
2014-08-13 00:00:00
K15504 : OpenSSH vulnerability CVE-2014-1692
2014-08-13 00:00:00
ubuntucve
ubuntucve
CVE-2014-1692
2014-01-29 00:00:00
cve
cve
CVE-2014-1692
2014-01-29 16:02:00
openvas
openvas
OpenSSH 'schnorr.c' Remote Memory Corruption Vulnerability
2014-04-09 00:00:00
nessus
nessus
IBM General Parallel File System OpenSSH Memory Corruption
2014-07-24 00:00:00
OpenSSH < 6.6 Multiple Remote Restriction Bypass Vulnerability
2014-03-24 00:00:00
OpenSSH < 6.6 Multiple Vulnerabilities
2014-03-18 00:00:00
prion
prion
Design/Logic Flaw
2014-01-29 16:02:00
debiancve
debiancve
CVE-2014-1692
2014-01-29 16:02:00
symantec
symantec
SA104 : OpenSSH Vulnerabilities
2015-12-08 08:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1938
2021-07-02 17:38:20
securityvulns
securityvulns
[security bulletin] HPSBMU03409 rev.1 - HP Matrix Operating Environment, Multiple Vulnerabilities
2015-09-14 00:00:00

0.043 Low

EPSS

Percentile

91.3%

JSON
Related for SSV:61450
f52ubuntucve1cve1openvas1nessus3prion1debiancve1symantec1rosalinux1securityvulns1