Dropbear SSH Server svr_ses.childpidsize Remote Overflow

High Nessus Plugin ID 34769


Authenticated users can gain elevated privileges.


According to its banner, the remote host is runnning a version of Dropbear SSH before 0.47. Such versions contain a buffer allocation error that may allow an authenticated user to gain elevated privileges.


Upgrade to the Dropbear SSH 0.47 or later.

See Also



Plugin Details

Severity: High

ID: 34769

File Name: dropbear_ssh_0_47.nasl

Version: $Revision: 1.9 $

Type: remote

Family: Misc.

Published: 2008/11/13

Modified: 2016/10/17

Dependencies: 10267

Risk Information

Risk Factor: High


Base Score: 9

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Temporal Vector: CVSS2#E:ND/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:matt_johnston:dropbear_ssh_server

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2005/12/11

Reference Information

CVE: CVE-2005-4178

BID: 15923

OSVDB: 21847