|
Family: General --> Category: infos
Dropbear SSH server format string vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks remote SSH server type and version
Detailed Explanation for this Vulnerability Test
Synopsis :
It is possible to execute arbitrary code on the remote host.
Description :
The remote host is runnning Dropbear SSH.
There is a format string vulnerability in all versions of the Dropbear SSH
server up to and including version 0.34. A possible hacker may use this flaw to
execute arbitrary code on the remote host.
Solution :
Upgrade to the latest version of the Dropbear SSH server.
Threat Level:
Critical / CVSS Base Score : 10
(AV:R/AC:L/Au:NR/C:C/A:C/I:C/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|