Subscribe to Liquidmatrix Security DigestNews FeedSubscribe to Liquidmatrix Security DigestComments

Browse > Home / Vulnerability / Georgia SoftWorks SSH2 Vulnerabilities

Georgia SoftWorks SSH2 Vulnerabilities

0

Author: Dave Lewis

From Secunia:

Description:
Luigi Auriemma has reported some vulnerabilities in Georgia SoftWorks SSH2 Server, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

1) A format string error in the log function when handling usernames can be exploited by sending a username containing format string specifiers.

2) A boundary error in the log function when handling usernames can be exploited to cause a buffer overflow by sending an overly-long username.

3) A boundary error within the handling of passwords can be exploited to cause a buffer overflow by sending an overly-long password.

Successful exploitation may allow execution of arbitrary code.

Article Link

Tags: , ,

Tag It:
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • NewsVine
  • LinkedIn
  • TwitThis
  • Facebook
  • Live

Posted by Dave Lewis on Thursday, January 3, 2008 at 8:12 am 
Filed under Vulnerability · Tagged with


Speak Your Mind

Tell us what you're thinking...
and oh, if you want a pic to show with your comment, go get a gravatar!