Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:27781
HistoryMar 19, 2012 - 12:00 a.m.

Dropbear SSH server use-after-free vulnerability

2012-03-1900:00:00
vulners.com
96
JSON

Dropbear SSH server use-after-free vulnerability

Impact: A remote authenticated user can execute arbitrary code on the
target system.
Class: Use After Free - CWE-416
CVE ID: CVE-2012-0920
CVSS: 8.5 (AV:N/AC:M/AU:S/C:C/I:C/A:C)

Description:
This vulnerability is located within the Dropbear daemon and occurs due
to the way the server manages channels concurrency. A specially crafted
request can trigger a `use after free` condition which can be used to
execute arbitrary code under root privileges provided the user has been
authenticated using a public key (authorized_keys file) and a command
restriction is enforced (command option).

Solution: Upgrade to version 2012.55 or higher.

Reference: https://secure.ucc.asn.au/hg/dropbear/rev/818108bf7749

Disclosure Timeline:
2012-01-24 - Vulnerability reported to vendor.
2012-02-24 - Coordinated public release of advisory.

Credit:
This vulnerability was discovered by Danny Fullerton from Mantor
Organization.
Special thanks to Matt.

Related

openvas 8
securityvulns 1
debiancve 1
nessus 5
cve 1
freebsd 1
ubuntucve 1
prion 1
fedora 1
gentoo 1
debian 1
oracle 1
openvas
openvas
Debian Security Advisory DSA 2456-1 (dropbear - use after free)
2013-09-18 00:00:00
Fedora Update for dropbear FEDORA-2012-10934
2012-07-30 00:00:00
Dropbear SSH Server Use-after-free Vulnerability
2014-11-07 00:00:00
securityvulns
securityvulns
Dropbear SSH server use-after-free
2012-03-19 00:00:00
debiancve
debiancve
CVE-2012-0920
2012-06-05 22:55:00
nessus
nessus
GLSA-201309-20 : Dropbear: Multiple vulnerabilities
2013-09-27 00:00:00
Fedora 16 : dropbear-0.55-1.fc16 (2012-10934)
2012-07-30 00:00:00
Debian DSA-2456-1 : dropbear - use after free
2012-04-25 00:00:00
cve
cve
CVE-2012-0920
2012-06-05 22:55:00
freebsd
freebsd
dropbear -- arbitrary code execution
2012-02-22 00:00:00
ubuntucve
ubuntucve
CVE-2012-0920
2012-06-05 00:00:00
prion
prion
Design/Logic Flaw
2012-06-05 22:55:00
fedora
fedora
[SECURITY] Fedora 16 Update: dropbear-0.55-1.fc16
2012-07-29 00:52:56
gentoo
gentoo
Dropbear: Multiple vulnerabilities
2013-09-26 00:00:00
debian
debian
[SECURITY] [DSA 2456-1] dropbear security update
2012-04-24 20:18:59
oracle
oracle
Oracle Critical Patch Update Advisory - April 2017
2017-04-18 00:00:00
JSON
Related for SECURITYVULNS:DOC:27781
openvas8securityvulns1debiancve1nessus5cve1freebsd1ubuntucve1prion1fedora1gentoo1debian1oracle1