FreeSSHD Remote Authentication Bypass Zeroday Exploit

2012-12-02T00:00:00
ID 1337DAY-ID-19855
Type zdt
Reporter Kingcope
Modified 2012-12-02T00:00:00

Description

Exploit for windows platform in category remote exploits

                                        
                                            FreeSSHD all version Remote Authentication Bypass ZERODAY
Discovered & Exploited by Kingcope
Year 2011
 
http://www.exploit-db.com/sploits/23080.zip
 
Run like:
 
ssh.exe -l<valid username> <host>
 
valid username might be:
 
root
admin
administrator
webadmin
sysadmin
netadmin
guest
user
web
test
ssh
sftp
ftp
 
or anything you can imagine.
 
 
The vulnerable banner of the most recent version is:
 
SSH-2.0-WeOnlyDo 2.1.3
 
 
For your pleasure,
 
KingcopeFreeSSHD all version Remote Authentication Bypass ZERODAY
Discovered & Exploited by Kingcope
Year 2011
 
Run like:
 
ssh.exe -l<valid username> <host>
 
valid username might be:
 
root
admin
administrator
webadmin
sysadmin
netadmin
guest
user
web
test
ssh
sftp
ftp
 
or anything you can imagine.
 
 
The vulnerable banner of the most recent version is:
 
SSH-2.0-WeOnlyDo 2.1.3
 
 
For your pleasure,
 
Kingcope

#  0day.today [2018-01-02]  #