openbsd openssh vulnerabilities and exploits

(subscribe to this query)

OpenSSH 4.6 and previous versions, when ChallengeResponseAuthentication is enabled, allows remote malicious users to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a different response if the user account exists, a similar issue t...

Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1 Openbsd Openssh 2.2 Openbsd Openssh 2.3 Openbsd Openssh 2.5 Openbsd Openssh 2.5.1 Openbsd Openssh 2.5.2

The auth_parse_options function in auth-options.c in sshd in OpenSSH prior to 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by ...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2 Openbsd Openssh 2.1

OpenSSH 5.6 and previous versions, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows remote malicious users to bypass the need for knowledge of the shared secret, and successfully authenticate, by sending crafted values ...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1

2 Github repositories

A certain Debian patch for OpenSSH prior to 4.3p2-9etch3 on etch; prior to 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote malicious users to cause a deni...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2 Openbsd Openssh 2.1

5 Github repositories2 Articles

Unspecified vulnerability in portable OpenSSH prior to 4.4, when running on some platforms, allows remote malicious users to determine the validity of usernames via unknown vectors involving a GSSAPI "authentication abort."

Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1 Openbsd Openssh 2.2 Openbsd Openssh 2.3 Openbsd Openssh 2.5 Openbsd Openssh 2.5.1 Openbsd Openssh 2.5.2

sshd in OpenSSH prior to 4.4, when using the version 1 SSH protocol, allows remote malicious users to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.

Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1 Openbsd Openssh 2.2 Openbsd Openssh 2.3 Openbsd Openssh 2.5 Openbsd Openssh 2.5.1 Openbsd Openssh 2.5.2

1 EDB exploit

The default configuration of OpenSSH up to and including 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote malicious users to cause a denial of service (connection-slot exhaustion) by periodically making...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1

1 Github repository

The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and previous versions, when gssapi-with-mic authentication is enabled, allows remote authenticated users to cause a denial of service (memory consumption) via a large value in a certain length field. NOTE: there may...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 3.0 Openbsd Openssh 3.0.1

OpenSSH prior to 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users on some platforms to hijack the X11 forwarding port via a bind to a single IP address, as demonstrated on the HP-UX platform.

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1

The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and previous versions, as used in FreeBSD 7.3 and 8.1, NetBSD 5.0.2, OpenBSD 4.7, and other products, allow remote authenticated users to cause a denial of service (CPU and memor...

Openbsd Openssh Openbsd Openssh 1.2 Openbsd Openssh 1.2.1 Openbsd Openssh 1.2.2 Openbsd Openssh 1.2.3 Openbsd Openssh 1.2.27 Openbsd Openssh 1.3 Openbsd Openssh 1.5 Openbsd Openssh 1.5.7 Openbsd Openssh 1.5.8 Openbsd Openssh 2.1 Openbsd Openssh 2.1.1

1 2 3 4 5 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook