CVE-2006-2407
CVE-2006-2407
Stack-based buffer overflow in (1) WeOnlyDo wodSSHServer ActiveX Component 1.2.7 and 1.3.3 DEMO, as used in other products including (2) FreeSSHd 1.0.9 and (3) freeFTPd 1.0.10, allows remote attackers to execute arbitrary code via a long key exchange algorithm string.
Produtos afetados
n/a · n/aPoCs públicas encontradas — 3
exploitdbwww.exploit-db.com/exploits/16462não verificadoexploitdbwww.exploit-db.com/exploits/1787não verificadoexploitdbwww.exploit-db.com/exploits/16461não verificado⚠ Recursos públicos, para você avaliar a exposição de sistemas que controla ou está autorizado a testar. Teste apenas com autorização.
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://marc.info/?l=full-disclosure&m=114764338702488&w=2http://secunia.com/advisories/19845http://secunia.com/advisories/19846http://secunia.com/advisories/20136http://securityreason.com/securityalert/901https://exchange.xforce.ibmcloud.com/vulnerabilities/26442http://www.kb.cert.org/vuls/id/477960http://www.osvdb.org/25463http://www.osvdb.org/25569http://www.securityfocus.com/archive/1/434007/100/0/threadedhttp://www.securityfocus.com/archive/1/434038/100/0/threadedhttp://www.securityfocus.com/archive/1/434402/100/0/threaded