CVE-2005-4178: Buffer Overflow
First published: Mon Dec 12 2005(Updated: )
Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
Credit: security@debian.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Dropbear Ssh Project Dropbear Ssh | <0.47 | |
| Debian Debian Linux | =3.1 | |
| Debian Debian Linux | =3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
- http://matt.ucc.asn.au/dropbear/dropbear.html
- http://www.debian.org/security/2005/dsa-923
- http://secunia.com/advisories/18108
- http://secunia.com/advisories/18109
- http://www.gentoo.org/security/en/glsa/glsa-200512-13.xml
- http://www.securityfocus.com/bid/15923/
- http://secunia.com/advisories/18142
- http://www.vupen.com/english/advisories/2005/2962
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/dropbear ssh project
- canonical/dropbear ssh project dropbear ssh
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/3.1
- version/debian debian linux/3.0