CVE-2006-6301 in DenyHostsinformation

Résumé

par MITRE

DenyHosts 2.5 does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a login name containing certain strings with an IP address, which is not properly handled by a regular expression.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

05/12/2006

Divulgation

06/12/2006

Modérer

accepté

Entrée

VDB-33637

CPE

prêt

EPSS

0.01871

KEV

non

Activités

très faible

Sources

Want to know what is going to be exploited?

We predict KEV entries!