Executive Summary

Summary
TitleHP-UX Secure Shell Remote Unauthorized Denial of Service (DoS)
Informations
NameHPSBUX02178 SSRT061267First vendor Publication2006-12-01
VendorHPLast vendor Modification2006-12-05
Severity (Vendor) N/ARevision2

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:C)
Cvss Base Score7.8Attack RangeNetwork
Cvss Impact Score6.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

A potential security vulnerability has been identified with HP-UX running HP-UX Secure Shell. The vulnerability could be remotely exploited to allow a remote unauthorized user to create a Denial of Service (DoS).

Original Source

Url : http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00815112

CWE : Common Weakness Enumeration

idName
CWE-399Resource Management Errors

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:9962
 
Oval ID: oval:org.mitre.oval:def:9962
Title: scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
Description: scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
Family: unix Class: vulnerability
Reference(s): CVE-2006-0225
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1138
 
Oval ID: oval:org.mitre.oval:def:1138
Title: Security Vernulbility Relating to scp(1) Command May Allow Attackers to Execute Arbitrary Commands
Description: scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded twice.
Family: unix Class: vulnerability
Reference(s): CVE-2006-0225
Version: 1
Platform(s): Sun Solaris 9
Sun Solaris 10
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:1193
 
Oval ID: oval:org.mitre.oval:def:1193
Title: Security Vulnerability in the sshd(1M) Protocol Version 1 Implementation May Allow a Denial of Service to the Host
Description: sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Family: unix Class: vulnerability
Reference(s): CVE-2006-4924
Version: 1
Platform(s): Sun Solaris 9
Sun Solaris 10
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:10462
 
Oval ID: oval:org.mitre.oval:def:10462
Title: sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Description: sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption) via an SSH packet that contains duplicate blocks, which is not properly handled by the CRC compensation attack detector.
Family: unix Class: vulnerability
Reference(s): CVE-2006-4924
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Product(s):
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application56

OpenVAS Exploits

DateDescription
2010-02-03Name : Solaris Update for Kernel 122300-48
File : nvt/gb_solaris_122300_48.nasl
2010-02-03Name : Solaris Update for Kernel 122301-48
File : nvt/gb_solaris_122301_48.nasl
2009-11-17Name : Mac OS X Version
File : nvt/macosx_version.nasl
2009-10-13Name : Solaris Update for /usr/bin/ssh 114356-19
File : nvt/gb_solaris_114356_19.nasl
2009-10-13Name : Solaris Update for /usr/bin/ssh 114357-18
File : nvt/gb_solaris_114357_18.nasl
2009-10-10Name : SLES9: Security update for OpenSSH
File : nvt/sles9p5021162.nasl
2009-10-10Name : SLES9: Security update for OpenSSH
File : nvt/sles9p5019505.nasl
2009-06-03Name : Solaris Update for kernel 120011-14
File : nvt/gb_solaris_120011_14.nasl
2009-06-03Name : Solaris Update for kernel 120012-14
File : nvt/gb_solaris_120012_14.nasl
2009-06-03Name : Solaris Update for /usr/bin/ssh 114356-18
File : nvt/gb_solaris_114356_18.nasl
2009-06-03Name : Solaris Update for /usr/bin/ssh 114357-17
File : nvt/gb_solaris_114357_17.nasl
2009-02-27Name : Fedora Update for openssh FEDORA-2007-395
File : nvt/gb_fedora_2007_395_openssh_fc5.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200602-11 (OpenSSH)
File : nvt/glsa_200602_11.nasl
2008-09-24Name : Gentoo Security Advisory GLSA 200609-17 (openssh)
File : nvt/glsa_200609_17.nasl
2008-09-04Name : FreeBSD Ports: openssh
File : nvt/freebsd_openssh.nasl
2008-09-04Name : FreeBSD Security Advisory (FreeBSD-SA-06:22.openssh.asc)
File : nvt/freebsdsa_openssh3.nasl
2008-01-17Name : Debian Security Advisory DSA 1189-1 (openssh-krb5)
File : nvt/deb_1189_1.nasl
2008-01-17Name : Debian Security Advisory DSA 1212-1 (openssh (1:3.8.1p1-8.sarge.6))
File : nvt/deb_1212_1.nasl
0000-00-00Name : Slackware Advisory SSA:2006-045-06 openssh
File : nvt/esoft_slk_ssa_2006_045_06.nasl
0000-00-00Name : Slackware Advisory SSA:2006-272-02 openssh
File : nvt/esoft_slk_ssa_2006_272_02.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
29152OpenSSH Identical Block Packet DoS
22692OpenSSH scp Command Line Filename Processing Command Injection

Information Assurance Vulnerability Management (IAVM)

DateDescription
2012-08-16IAVM : 2012-A-0136 - Multiple Vulnerabilities in Juniper Network Management Products
Severity : Category I - VMSKEY : V0033662

Snort® IPS/IDS

DateDescription
2014-01-10OpenSSH sshd identical blocks DoS attempt
RuleID : 17317 - Revision : 7 - Type : SERVER-OTHER

Nessus® Vulnerability Scanner

DateDescription
2013-09-13Name : The remote host is affected by multiple vulnerabilities.
File : juniper_nsm_2012_1.nasl - Type : ACT_GATHER_INFO
2013-07-12Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2006-0697.nasl - Type : ACT_GATHER_INFO
2011-10-04Name : The version of SSH running on the remote host has a command injection vulnera...
File : openssh_43.nasl - Type : ACT_GATHER_INFO
2011-08-29Name : The SSH service running on the remote host has an information disclosure vuln...
File : sunssh_plaintext_recovery.nasl - Type : ACT_GATHER_INFO
2007-12-13Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_openssh-2184.nasl - Type : ACT_GATHER_INFO
2007-11-10Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-355-1.nasl - Type : ACT_GATHER_INFO
2007-10-17Name : The remote SuSE system is missing the security patch openssh-2183
File : suse_openssh-2183.nasl - Type : ACT_GATHER_INFO
2007-04-05Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-395.nasl - Type : ACT_GATHER_INFO
2007-03-13Name : The remote host is missing a Mac OS X update which fixes a security issue.
File : macosx_10_4_9.nasl - Type : ACT_GATHER_INFO
2007-02-18Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2006_062.nasl - Type : ACT_GATHER_INFO
2007-02-18Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2006-179.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote Fedora Core host is missing a security update.
File : fedora_2006-1011.nasl - Type : ACT_GATHER_INFO
2006-11-20Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1212.nasl - Type : ACT_GATHER_INFO
2006-10-14Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1189.nasl - Type : ACT_GATHER_INFO
2006-10-02Name : The remote FreeBSD host is missing one or more security-related updates.
File : freebsd_pkg_32db37a550c311dbacf3000c6ec775d9.nasl - Type : ACT_GATHER_INFO
2006-10-02Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2006-0697.nasl - Type : ACT_GATHER_INFO
2006-09-29Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2006-0697.nasl - Type : ACT_GATHER_INFO
2006-09-29Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2006-0698.nasl - Type : ACT_GATHER_INFO
2006-09-29Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2006-272-02.nasl - Type : ACT_GATHER_INFO
2006-09-28Name : The remote SSH server is affected by multiple vulnerabilities.
File : openssh_44.nasl - Type : ACT_GATHER_INFO
2006-09-28Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200609-17.nasl - Type : ACT_GATHER_INFO
2006-08-04Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2006-0298.nasl - Type : ACT_GATHER_INFO
2006-07-21Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2006-0298.nasl - Type : ACT_GATHER_INFO
2006-07-05Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2006-0044.nasl - Type : ACT_GATHER_INFO
2006-03-13Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-255-1.nasl - Type : ACT_GATHER_INFO
2006-03-08Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2006-0044.nasl - Type : ACT_GATHER_INFO
2006-02-21Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200602-11.nasl - Type : ACT_GATHER_INFO
2006-02-15Name : The remote Slackware host is missing a security update.
File : Slackware_SSA_2006-045-06.nasl - Type : ACT_GATHER_INFO
2006-02-15Name : The remote host is missing a vendor-supplied security patch
File : suse_SA_2006_008.nasl - Type : ACT_GATHER_INFO
2006-02-10Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2006-034.nasl - Type : ACT_GATHER_INFO
2006-01-24Name : The remote Fedora Core host is missing a security update.
File : fedora_2006-056.nasl - Type : ACT_GATHER_INFO