Описание
The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| dropbear | fixed | 2016.74-1 | package | |
| dropbear | fixed | 2014.65-1+deb8u1 | jessie | package |
| dropbear | not-affected | wheezy | package |
Примечания
https://hg.ucc.asn.au/dropbear/rev/eed9376a4ad6
Связанные уязвимости
CVSS3: 8.8
ubuntu
почти 9 лет назад
The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.
CVSS3: 8.8
nvd
почти 9 лет назад
The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.
CVSS3: 8.8
github
больше 3 лет назад
The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.