SSH Multiple Remote Vulnerabilities

This script is Copyright (C) 2002-2014 Paul Johnston, Westpoint Ltd


Synopsis :

It may be possible to crash the SSH server on the remote host.

Description :

According to its banner, the remote SSH server is affected by one or
more of the following vulnerabilities :

- CVE-2002-1357 (incorrect length)

- CVE-2002-1358 (lists with empty elements/empty strings)

- CVE-2002-1359 (large packets and large fields)

- CVE-2002-1360 (string fields with zeros)

The impact of successful exploitation of these vulnerabilities varies
across products. In some cases, remote attackers will be able to
execute arbitrary code with the privileges of the SSH process (usually
root), although for the products currently tested, the maximum impact is
believed to be just a denial of service.

See also :

http://www.rapid7.com/advisories/R7-0009.txt
http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0110.html

Solution :

Contact the vendor for an update.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
Public Exploit Available : true

Family: Misc.

Nessus Plugin ID: 11195 ()

Bugtraq ID:

CVE ID: CVE-2002-1357
CVE-2002-1358
CVE-2002-1359
CVE-2002-1360