OpenSSH 7.7 up to and including 7.9 and 8.x prior to 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
openbsd openssh |
||
netapp cloud backup - |
||
netapp steelstore cloud integrated storage - |
||
siemens scalance_x204rna_firmware |
||
siemens scalance_x204rna_ecc_firmware |