Dropbear SSH Server < 2013.59 Multiple Vulnerabilities

medium Nessus Plugin ID 70545

Synopsis

The remote SSH service is affected by multiple vulnerabilities.

Description

According to its self-reported banner, the version of Dropbear SSH running on this port is earlier than 2013.59. As such, it is potentially affected by multiple vulnerabilities :

- A denial of service vulnerability caused by the way the 'buf_decompress()' function handles compressed files.
(CVE-2013-4421)

- User-enumeration is possible due to a timing error when authenticating users. (CVE-2013-4434)

Solution

Upgrade to the Dropbear SSH 2013.59 or later.

See Also

https://matt.ucc.asn.au/dropbear/CHANGES

https://secure.ucc.asn.au/hg/dropbear/rev/0bf76f54de6f

https://secure.ucc.asn.au/hg/dropbear/rev/a625f9e135a4

Plugin Details

Severity: Medium

ID: 70545

File Name: dropbear_ssh_59.nasl

Version: 1.5

Type: remote

Family: Misc.

Published: 10/22/2013

Updated: 11/27/2019

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.7

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS Score Source: CVE-2013-4434

Vulnerability Information

CPE: cpe:/a:matt_johnston:dropbear_ssh_server

Exploit Ease: No known exploits are available

Patch Publication Date: 10/4/2013

Vulnerability Publication Date: 10/3/2013

Reference Information

CVE: CVE-2013-4421, CVE-2013-4434

BID: 62958, 62993