An integer overflow flaw, which could lead to an out of bounds write, exists in libssh2 prior to 1.8.1 in the way keyboard prompt requests are parsed. A remote attacker who compromises a SSH server may be able to execute code on the client system when a user connects to the server.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libssh2 libssh2 |
||
debian debian linux 8.0 |
||
debian debian linux 9.0 |
||
netapp ontap select deploy administration utility - |
||
opensuse leap 42.3 |
||
opensuse leap 15.0 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux 8.0 |
||
fedoraproject fedora 28 |
||
oracle peoplesoft enterprise peopletools 8.56 |
||
oracle peoplesoft enterprise peopletools 8.57 |