CVE-2005-4178
NONE EPSS 87.5%
Published Dec 12, 200520y ago · Modified Jun 16, 20262w ago
Published Dec 12, 2005 20y ago
Last Modified Jun 16, 2026 2w ago
Description
Buffer overflow in Dropbear server before 0.47 allows authenticated users to execute arbitrary code via unspecified inputs that cause insufficient memory to be allocated due to an incorrect expression that does not enforce the proper order of operations.
Threat Intelligence
EPSS Exploit Probability
87.5% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 3
| Vendor | Product | Version | Range |
|---|---|---|---|
| dropbear_ssh_project | dropbear_ssh | * | <0.47 |
| debian | debian_linux | 3.0 | any |
| debian | debian_linux | 3.1 | any |
References 9
- lists.ucc.gu.uwa.edu.au http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
- matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/dropbear.html
- secunia.com http://secunia.com/advisories/18108
- secunia.com http://secunia.com/advisories/18109
- secunia.com http://secunia.com/advisories/18142
- debian.org http://www.debian.org/security/2005/dsa-923
- gentoo.org http://www.gentoo.org/security/en/glsa/glsa-200512-13.xml
- securityfocus.com http://www.securityfocus.com/bid/15923/
- vupen.com http://www.vupen.com/english/advisories/2005/2962
Remediation
- lists.ucc.gu.uwa.edu.au http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2005q4/000312.html
- matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/dropbear.html