CVE-2012-0920
https://notcve.org/view.php?id=CVE-2012-0920
Use-after-free vulnerability in Dropbear SSH Server 0.52 through 2012.54, when command restriction and public key authentication are enabled, allows remote authenticated users to execute arbitrary code and bypass command restrictions via multiple crafted command requests, related to "channels concurrency." Una vulnerabilidad de uso después de liberación vulnerabilidad en Dropbear SSH Server v0.52 a 2012.54 cuando la restricción de comandos y la autenticación de clave pública están habilitadas, lo permite a ejecutar código de su elección y eludir restricciones de comandos a usuarios remotos autenticados a través de múltiples peticiones hechas a mano, relacionados con la "concurrencia de canales." • http://matt.ucc.asn.au/dropbear/CHANGES http://secunia.com/advisories/48147 http://secunia.com/advisories/48929 http://www.debian.org/security/2012/dsa-2456 http://www.osvdb.org/79590 http://www.securityfocus.com/bid/52159 https://exchange.xforce.ibmcloud.com/vulnerabilities/73444 https://secure.ucc.asn.au/hg/dropbear/rev/818108bf7749 https://www.mantor.org/~northox/misc/CVE-2012-0920.html • CWE-399: Resource Management Errors •
CVE-2011-0766
https://notcve.org/view.php?id=CVE-2011-0766
The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys. El generador de números aleatorios de la aplicación Crypto en versiones anteriores a la 2.0.2.2, y SSH anteriores a 2.0.5, como es usado en la librería Erlang/OTP ssh en versiones anteriores a la R14B03, utiliza semillas predecibles basadas en la fecha actual, lo que facilita a atacantes remotos adivinar el host DSA y las claves de sesión SSH. • http://secunia.com/advisories/44709 http://www.kb.cert.org/vuls/id/178990 http://www.securityfocus.com/bid/47980 https://github.com/erlang/otp/commit/f228601de45c5b53241b103af6616453c50885a5 • CWE-310: Cryptographic Issues •
CVE-2007-1099
https://notcve.org/view.php?id=CVE-2007-1099
dbclient in Dropbear SSH client before 0.49 does not sufficiently warn the user when it detects a hostkey mismatch, which might allow remote attackers to conduct man-in-the-middle attacks. dbclient en el cliente SSH Dropbear en versiones anteriores a la 0.49 no previene/avisa suficientemente a los usuarios cuando detecta una discrepancia en el hostkey, lo que puede permite a usuarios remotos realizar ataques "hombre en el medio" (man-in-the-middle). • http://matt.ucc.asn.au/dropbear/CHANGES http://osvdb.org/33814 http://secunia.com/advisories/24345 http://www.osvdb.org/32088 http://www.securityfocus.com/bid/22761 http://www.vupen.com/english/advisories/2007/0785 https://exchange.xforce.ibmcloud.com/vulnerabilities/32762 •
CVE-2007-0844
https://notcve.org/view.php?id=CVE-2007-0844
The auth_via_key function in pam_ssh.c in pam_ssh before 1.92, when the allow_blank_passphrase option is disabled, allows remote attackers to bypass authentication restrictions and use private encryption keys requiring a blank passphrase by entering a non-blank passphrase. La función auth_via_key en pam_ssh.c de pam_ssh before 1.92, cuando la opción allow_blank_passphrase está deshabilitada, permite a atacantes remotos evitar restricciones de autenticación y utilizar claves de cifrado privadas requiriendo una cadena de contraseña en blanco, introduciendo una cadena de contraseña no en blanco. • http://osvdb.org/33119 http://secunia.com/advisories/24061 http://sourceforge.net/project/shownotes.php?release_id=484376 http://www.securityfocus.com/bid/22461 http://www.vupen.com/english/advisories/2007/0524 •
CVE-2006-1206 – Dropbear / OpenSSH Server - 'MAX_UNAUTH_CLIENTS' Denial of Service
https://notcve.org/view.php?id=CVE-2006-1206
Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service (connection slot exhaustion) via a large number of connection attempts that exceeds the MAX_UNAUTH_CLIENTS defined value of 30. • https://www.exploit-db.com/exploits/1572 http://securitytracker.com/id?1015742 http://www.securityfocus.com/archive/1/426999/100/0/threaded http://www.securityfocus.com/bid/17024 https://exchange.xforce.ibmcloud.com/vulnerabilities/25075 •