The Last HOPE
-->
         
         
Email us! Subscribe to Liquidmatrix!

Georgia SoftWorks SSH2 Vulnerabilities

Author: Dave Lewis
January 3, 2008 at 8:12 am · Filed under Vulnerability

From Secunia:

Description:
Luigi Auriemma has reported some vulnerabilities in Georgia SoftWorks SSH2 Server, which potentially can be exploited by malicious people to cause a DoS (Denial of Service) or compromise a vulnerable system.

1) A format string error in the log function when handling usernames can be exploited by sending a username containing format string specifiers.

2) A boundary error in the log function when handling usernames can be exploited to cause a buffer overflow by sending an overly-long username.

3) A boundary error within the handling of passwords can be exploited to cause a buffer overflow by sending an overly-long password.

Successful exploitation may allow execution of arbitrary code.

Article Link

Tags: , ,

Tag It: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • Digg
  • del.icio.us
  • Slashdot
  • Technorati
  • SphereIt
  • StumbleUpon
  • Fark
  • YahooMyWeb
  • Furl
  • Spurl
  • Ma.gnolia
  • NewsVine
Related Articles:

  • Young Women Laughed While Robbing Bank
  • Thief Scoops Georgia DHR Employee Details
  • Nuke Plant Shutdown Due To Upgrade
  • Macromedia Flash Malformed SWF File Multiple Vulnerabilities
  • IBM OpenSSH for AIX Two Vulnerabilities

    • Leave a Comment