29152 : OpenSSH Identical Block Packet DoS
Printer | http://osvdb.org/29152 | Email This | Edit Vulnerability

Views This Week

Views All Time

189

Info

Last Modified

8 months ago

Percent Complete

100%

Disclosure

Sep 25, 2006

Discovery

Unknown

Dates

Exploit

Sep 25, 2006

Solution

Unknown

Description

OpenSSH contains a flaw that may allow a pre-authentication remote denial of service. The issue is triggered when SSH version 1 is used via an SSH packet that contains duplicate blocks, and will result in loss of availability for the service.

Classification

Location: Remote/Network Access Required
Attack Type: Cryptographic, Denial of Service, Input Manipulation
Impact: Loss of Availability
Exploit: Exploit Available
Disclosure: OSVDB Verified

Technical

This issue can only be exploited when the version 1 SSH protocol is enabled.

Solution

Upgrade to version 4.4 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): disable SSH protocol version 1 in /etc/ssh/sshd_config

Products

OpenSSH	OpenSSH	4.3
OpenSSH	OpenSSH (portable)	4.3p1

References

Tools & Filters

Nessus	22464 22468 22473 22474 22488 22731 23661 24029 24050 24051 24565 24811 24926 27365 27935 29538

Credit

Tavis Ormandy - tavisogoogle.com - Google Information Security Team

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Technical

Solution

Products

OpenSSH

OpenSSH

OpenSSH (portable)

References

Tools & Filters

Credit

Blogs

Comments