6.5

CVE-2005-4178

Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
DebianDebian Linux Version3.0
DebianDebian Linux Version3.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 3.44% 0.874
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 8 6.4
AV:N/AC:L/Au:S/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
Patch
Vendor Advisory
http://matt.ucc.asn.au/dropbear/dropbear.html
Patch
Vendor Advisory
http://secunia.com/advisories/18108
Third Party Advisory
http://secunia.com/advisories/18109
Third Party Advisory
http://secunia.com/advisories/18142
Third Party Advisory
http://www.debian.org/security/2005/dsa-923
Third Party Advisory
http://www.gentoo.org/security/en/glsa/glsa-200512-13.xml
Third Party Advisory
http://www.securityfocus.com/bid/15923/
Third Party Advisory
VDB Entry
http://www.vupen.com/english/advisories/2005/2962
Third Party Advisory