CVE-2007-4321
CVE-2007-4321
fail2ban 0.8 and earlier does not properly parse sshd log files, which allows remote attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via ssh with a client protocol version identification containing an IP address string, a different vector than CVE-2006-6302.
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/30430unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://bugs.gentoo.org/show_bug.cgi?id=181214http://osvdb.org/42484http://secunia.com/advisories/23237http://secunia.com/advisories/28374http://security.gentoo.org/glsa/glsa-200707-13.xmlhttp://www.debian.org/security/2008/dsa-1456http://www.ossec.net/en/attacking-loganalysis.htmlhttp://www.securityfocus.com/bid/25117