OpenSSH 'sshd' Challenge Response Authentication Buffer Overflow Vulnerability Network Vulnerability

Summary

The host is running OpenSSH sshd with ChallengeResponseAuthentication enabled and is prone to buffer overflow vulnerability.

Impact

Successful exploitation could allows remote attackers to execute arbitrary code and gain escalated privileges. Impact Level: Application

Solution

Upgrade to OpenSSH version 3.4 or later For updates refer to http://www.openssh.com/

Insight

The flaw is due to an error in handling a large number of responses during challenge response authentication when using PAM modules with interactive keyboard authentication (PAMAuthenticationViaKbdInt).

Affected

OpenSSH versions 2.3.1 to 3.3

References

http://marc.info/?l=bugtraq&m=102521542826833&w=2
http://osvdb.org/839
http://www.cert.org/advisories/CA-2002-18.html
http://www.kb.cert.org/vuls/id/369347

Updated on 2015-03-25

Severity

Classification

CVE CVE-2002-0640
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

ChaSen Buffer Overflow Vulnerability (Windows)
Cscope Multiple Buffer Overflow vulnerability
ClamAV 'find_stream_bounds()' function Buffer Overflow Vulnerability
Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Linux)
Adobe Flash Player Buffer Overflow Vulnerability (Windows)

Take action and discover your vulnerabilities