Dropbear DSS verification code execution
| dropbear-dss-code-execution (16810) |  High Risk |
Description:
Dropbear SSH Server could allow a remote attacker to execute arbitrary code on the system, caused by a vulnerability with the handling of uninitialised variables in the DSS verification code.
Platforms Affected:
- Matt Johnston, Dropbear SSH Server 0.42 and prior
Remedy:
Upgrade to the latest version of Dropbear SSH Server (0.43 or later), available from the Dropbear SSH Server Web page. See References.
Consequences:
Gain Access
References:
- Dropbear SSH Server Advisory, Dropbear SSH Server at http://matt.ucc.asn.au/dropbear/dropbear.html.
- Dropbear SSH Server Web page, Dropbear SSH Server at http://matt.ucc.asn.au/dropbear/dropbear.html.
- BID-10803: Dropbear SSH Server Digital Signature Standard Unspecified Authentication Vulnerability
- CVE-2004-2486: The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variables, which might allow remote attackers to gain access.
- OSVDB ID: 8137: Dropbear SSH Server DSS Verification Issue
- SA12153: Dropbear SSH Server DSS Verification Vulnerability
- SA28935: Cisco Unified IP Phone Multiple Vulnerabilities
- VUPEN/ADV-2008-0543: Cisco Unified IP Phones Overflow and Denial of Service Vulnerabilities
Reported:
Jul 26, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net