CVE-2010-5107 in Oracle SPARC Enterprise M3000info

Summary

The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login, which makes it easier for remote attackers to cause a denial of service (connection-slot exhaustion) by periodically making many new TCP connections.

Reservation

04/30/2012

Disclosure

03/07/2013

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
68771	Oracle SPARC Enterprise M3000/M4000/M5000/M8000/M9000 XCP Firmware denial of service	404	Not defined	Official fix	CVE-2010-5107
7623	OpenBSD OpenSSH Default Configuration denial of service	404	Proof-of-Concept	Official fix	CVE-2010-5107

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!