CVE-2016-3116
CVE-2016-3116
CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data.
Affected products
n/a · n/apublic PoCs found — 3
githubgithub.com/mxypoo/CVE-2016-3116-DropbearSSH★ 2cve_referencepacketstormsecurity.com/files/136251/Dropbear-SSHD-xauth-Command-Injection-Bypass.htmlunverifiedexploitdbwww.exploit-db.com/exploits/40119unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.fedoraproject.org/pipermail/package-announce/2016-March/179261.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2016-March/179269.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2016-March/179870.htmlhttp://lists.opensuse.org/opensuse-updates/2016-03/msg00105.htmlhttp://lists.opensuse.org/opensuse-updates/2016-03/msg00113.htmlhttp://packetstormsecurity.com/files/136251/Dropbear-SSHD-xauth-Command-Injection-Bypass.htmlhttp://seclists.org/fulldisclosure/2016/Mar/47https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-3115https://matt.ucc.asn.au/dropbear/CHANGEShttps://security.gentoo.org/glsa/201607-08