FortressSSH < 0.47 SSH_MSG_KEXINIT Logging Remote Overflow
High Nessus Network Monitor Plugin ID 3620
SynopsisThe remote host is vulnerable to a buffer overflow.
DescriptionThe remote host is running a version of the FortressSSH SSH server that is vulnerable to a remote buffer overflow. An attacker exploiting this flaw would send a malformed key exchange. Successful exploitation would give the attacker the ability to execute arbitrary code on the remote server.
SolutionUpgrade to version 0.47 or higher.