Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-4323
HistoryAug 14, 2007 - 12:00 a.m.

CVE-2007-4323

2007-08-1400:00:00
ubuntu.com
ubuntu.com
5

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

93.0%

JSON

DenyHosts 2.6 does not properly parse sshd log files, which allows remote
attackers to add arbitrary hosts to the /etc/hosts.deny file and cause a
denial of service by adding arbitrary IP addresses to the sshd log file, as
demonstrated by logging in via ssh with a client protocol version
identification containing an IP address string, a different vector than
CVE-2006-6301.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.10noarchdenyhosts< 2.5-3ubuntu0.1UNKNOWN
ubuntu7.04noarchdenyhosts< 2.6-1ubuntu0.1UNKNOWN
ubuntu7.10noarchdenyhosts< 2.6-2.1UNKNOWN

Related

cve 4
prion 3
cvelist 4
nvd 4
gentoo 2
ubuntucve 2
nessus 2
openvas 4
cve
cve
CVE-2007-4323
2007-08-14 00:17:00
CVE-2006-6301
2006-12-06 19:28:00
CVE-2007-2765
2007-05-18 22:30:00
prion
prion
Design/Logic Flaw
2007-08-14 00:17:00
Design/Logic Flaw
2007-05-18 22:30:00
Code injection
2007-10-30 19:46:00
cvelist
cvelist
CVE-2007-4323
2007-08-14 00:00:00
CVE-2006-6301
2006-12-06 19:00:00
CVE-2007-2765
2007-05-18 22:00:00
nvd
nvd
CVE-2007-4323
2007-08-14 00:17:00
CVE-2006-6301
2006-12-06 19:28:00
CVE-2007-2765
2007-05-18 22:30:00
gentoo
gentoo
DenyHosts: Denial of service
2007-01-03 00:00:00
DenyHosts: Denial of service
2007-10-13 00:00:00
ubuntucve
ubuntucve
CVE-2006-6301
2006-12-06 00:00:00
CVE-2007-5715
2007-10-30 00:00:00
nessus
nessus
GLSA-200701-01 : DenyHosts: Denial of Service
2007-01-08 00:00:00
GLSA-200710-14 : DenyHosts: Denial of Service
2007-10-15 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200701-01 (denyhosts)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200701-01 (denyhosts)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200710-14 (denyhosts)
2008-09-24 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.051 Low

EPSS

Percentile

93.0%

JSON
Related for UB:CVE-2007-4323
cve4prion3cvelist4nvd4gentoo2ubuntucve2nessus2openvas4