CVE-2012-10060
Sysax Multi Server < 5.55 SSH Username Buffer Overflow
Sysax Multi Server versions prior to 5.55 contain a stack-based buffer overflow in its SSH service. When a remote attacker supplies an overly long username during authentication, the server copies the input to a fixed-size stack buffer without proper bounds checking. This allows remote code execution under the context of the service.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Affected products
Sysax Software · Multi Serverpublic PoCs found — 4
cve_referenceraw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ssh/sysax_ssh_username.rbunverifiedcve_referenceweb.archive.org/web/20120302203344/http://www.pwnag3.com/2012/02/sysax-multi-server-ssh-username-exploit.htmlunverifiedcve_referencewww.exploit-db.com/exploits/18535unverifiedcve_referencewww.exploit-db.com/exploits/18557unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://advisories.checkpoint.com/defense/advisories/public/2012/cpai-23-sepc.htmlhttps://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/exploits/windows/ssh/sysax_ssh_username.rbhttps://web.archive.org/web/20120302203344/http://www.pwnag3.com/2012/02/sysax-multi-server-ssh-username-exploit.htmlhttps://www.exploit-db.com/exploits/18535https://www.exploit-db.com/exploits/18557https://www.sysax.com/https://www.vulncheck.com/advisories/sysax-multi-server-ssh-username-buffer-overflow