CVE-2006-2407
CVE-2006-2407
Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string.
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
exploitdbwww.exploit-db.com/exploits/16462no verificadoexploitdbwww.exploit-db.com/exploits/1787no verificadoexploitdbwww.exploit-db.com/exploits/16461no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://marc.info/?l=full-disclosure&m=114764338702488&w=2http://secunia.com/advisories/19845http://secunia.com/advisories/19846http://secunia.com/advisories/20136http://securityreason.com/securityalert/901https://exchange.xforce.ibmcloud.com/vulnerabilities/26442http://www.kb.cert.org/vuls/id/477960http://www.osvdb.org/25463http://www.osvdb.org/25569http://www.securityfocus.com/archive/1/434007/100/0/threadedhttp://www.securityfocus.com/archive/1/434038/100/0/threadedhttp://www.securityfocus.com/archive/1/434402/100/0/threaded