CVE-2005-4178

NONE EPSS 87.5%
Published Dec 12, 200520y ago · Modified Jun 16, 20262w ago
Find Similar
Published Dec 12, 2005 20y ago
Last Modified Jun 16, 2026 2w ago

Description

Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.

Threat Intelligence

EPSS Exploit Probability
87.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Affected Products 3

VendorProductVersionRange
dropbear_ssh_projectdropbear_ssh* <0.47
debiandebian_linux3.0any
debiandebian_linux3.1any

References 9

  • lists.ucc.gu.uwa.edu.au http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
    PatchVendor Advisory
  • matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/dropbear.html
    PatchVendor Advisory
  • secunia.com http://secunia.com/advisories/18108
    Third Party Advisory
  • secunia.com http://secunia.com/advisories/18109
    Third Party Advisory
  • secunia.com http://secunia.com/advisories/18142
    Third Party Advisory
  • debian.org http://www.debian.org/security/2005/dsa-923
    Third Party Advisory
  • gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200512-13.xml
    Third Party Advisory
  • securityfocus.com http://www.securityfocus.com/bid/15923/
    Third Party AdvisoryVDB Entry
  • vupen.com http://www.vupen.com/english/advisories/2005/2962
    Third Party Advisory

Remediation

  • lists.ucc.gu.uwa.edu.au http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
    PatchVendor Advisory
  • matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/dropbear.html
    PatchVendor Advisory