This script is Copyright (C) 2016 Tenable Network Security, Inc.
The remote SSH service is affected by a command injection
According to its self-reported version in the banner, the version of
Dropbear SSH running on the remote host is prior to 2016.72. It is,
therefore, affected by a command injection vulnerability when X11
Forwarding is enabled, due to improper sanitization of X11
authentication credentials. An authenticated, remote attacker can
exploit this to execute arbitrary xauth commands on the remote host.
Note that X11 Forwarding is not enabled by default.
See also :
Upgrade to Dropbear SSH version 2016.72 or later.
Risk factor :
Medium / CVSS Base Score : 6.0
CVSS Temporal Score : 5.0
Public Exploit Available : true