CVE-2007-1099
NONE EPSS 79.4%
Published Feb 26, 200719y ago · Modified Jun 16, 20262w ago
Published Feb 26, 2007 19y ago
Last Modified Jun 16, 2026 2w ago
Description
dbclient in Dropbear SSH client before 0.49 does not sufficiently warn the user when it detects a hostkey mismatch, which might allow remote attackers to conduct man-in-the-middle attacks.
Threat Intelligence
EPSS Exploit Probability
79.4% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| dropbear_ssh_project | dropbear_ssh | * | <0.49 |
References 7
- matt.ucc.asn.au http://matt.ucc.asn.au/dropbear/CHANGES
- osvdb.org http://osvdb.org/33814
- secunia.com http://secunia.com/advisories/24345
- osvdb.org http://www.osvdb.org/32088
- securityfocus.com http://www.securityfocus.com/bid/22761
- vupen.com http://www.vupen.com/english/advisories/2007/0785
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/32762
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.