CVE-2004-2486

NONE EPSS 85.8%
Published Dec 31, 200421y ago ยท Modified Jun 16, 20262w ago
Find Similar
Published Dec 31, 2004 21y ago
Last Modified Jun 16, 2026 2w ago

Description

The DSS verification code in Dropbear SSH Server before 0.43 frees uninitialized variables, which might allow remote attackers to gain access.

Threat Intelligence

EPSS Exploit Probability
85.8% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Affected Products 1

VendorProductVersionRange
dropbear_ssh_projectdropbear_ssh* <0.43

References 9

  • matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/CHANGES
    Vendor Advisory
  • secunia.com http://secunia.com/advisories/12153
    Third Party Advisory
  • secunia.com http://secunia.com/advisories/28935
    Third Party Advisory
  • cisco.com http://www.cisco.com/en/US/products/products_security_advisory09186a0080949c7a.shtml
    Third Party Advisory
  • osvdb.org http://www.osvdb.org/8137
    Broken Link
  • securityfocus.com http://www.securityfocus.com/bid/10803
    Third Party AdvisoryVDB Entry
  • vupen.com http://www.vupen.com/english/advisories/2008/0543
    Third Party Advisory
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/16810
    Third Party AdvisoryVDB Entry
  • exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/40490
    Third Party AdvisoryVDB Entry

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.