Dropbear Ssh Project : Security Vulnerabilities, CVEs, (Denial of service)
The buf_decompress function in packet.c in Dropbear SSH Server before 2013.59 allows remote attackers to cause a denial of service (memory consumption) via a compressed packet that has a large size when it is decompressed.
Max CVSS
5.0
EPSS Score
7.02%
Published
2013-10-25
Updated
2018-10-30
Matt Johnston Dropbear SSH server 0.47 and earlier, as used in embedded Linux devices and on general-purpose operating systems, allows remote attackers to cause a denial of service (connection slot exhaustion) via a large number of connection attempts that exceeds the MAX_UNAUTH_CLIENTS defined value of 30.
Max CVSS
5.0
EPSS Score
2.73%
Published
2006-03-14
Updated
2018-10-30
2 vulnerabilities found