Описание
The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Broken Link
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Third Party Advisory
- Vendor Advisory
- Broken Link
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Конфигурация 2Версия до 1.4.3 (включая)
cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*
Конфигурация 3
Одно из
cpe:2.3:o:fedoraproject:fedora:20:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:22:*:*:*:*:*:*:*
EPSS
Процентиль: 88%
0.04133
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
ubuntu
больше 10 лет назад
The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.
redhat
больше 10 лет назад
The kex_agree_methods function in libssh2 before 1.5.0 allows remote servers to cause a denial of service (crash) or have other unspecified impact via crafted length values in an SSH_MSG_KEXINIT packet.
debian
больше 10 лет назад
The kex_agree_methods function in libssh2 before 1.5.0 allows remote s ...
EPSS
Процентиль: 88%
0.04133
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-20