Dropbear SSH Server Format String (deprecated)

high Nessus Network Monitor Plugin ID 1993

Synopsis

The remote host is vulnerable to a 'format string' flaw

Description

The remote host is running a version of the Dropbear SSH server that is vulnerable to a format string attack. An attacker may use this vulnerability to execute arbitrary code on the SSH server.

Solution

Upgrade or patch according to vendor recommendations.

Plugin Details

Severity: High

ID: 1993

Family: SSH

Published: 8/20/2004

Updated: 1/15/2016